{
  "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json",
  "bomFormat": "CycloneDX",
  "specVersion": "1.6",
  "serialNumber": "urn:uuid:7491bed8-e8c9-5a25-b151-56d327ae7ec4",
  "version": 1,
  "metadata": {
    "tools": [
      {
        "name": "tuxcare-vex-generator",
        "version": "1.0.0"
      }
    ]
  },
  "components": [
    {
      "bom-ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-common@9.4.53.v20231009-tuxcare.4",
      "type": "library",
      "group": "org.eclipse.jetty.websocket",
      "name": "websocket-common",
      "version": "9.4.53.v20231009-tuxcare.4",
      "purl": "pkg:maven/org.eclipse.jetty.websocket/websocket-common@9.4.53.v20231009-tuxcare.4"
    }
  ],
  "vulnerabilities": [
    {
      "bom-ref": "urn:uuid:2c5b17cb-e191-5529-bf74-33f8850bbf29",
      "id": "CVE-2020-25711",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2020-25711 affects version 9.4.53.v20231009-tuxcare.4 of org.eclipse.jetty.websocket:websocket-common."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-common@9.4.53.v20231009-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:386e884a-e94d-52bf-917a-9c78e8665d2e",
      "id": "CVE-2020-27216",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2020-27216 affects version 9.4.53.v20231009-tuxcare.4 of org.eclipse.jetty.websocket:websocket-common."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-common@9.4.53.v20231009-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:e3c74205-8862-592c-a8d8-139e2f379355",
      "id": "CVE-2021-28169",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2021-28169 affects version 9.4.53.v20231009-tuxcare.4 of org.eclipse.jetty.websocket:websocket-common."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-common@9.4.53.v20231009-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:5c59d592-eca8-5ee4-9c4e-daca1993351b",
      "id": "CVE-2021-34428",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2021-34428 affects version 9.4.53.v20231009-tuxcare.4 of org.eclipse.jetty.websocket:websocket-common."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-common@9.4.53.v20231009-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:13c08753-a2e0-5de3-87ae-777a5fb8dc20",
      "id": "CVE-2023-36478",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2023-36478 affects version 9.4.53.v20231009-tuxcare.4 of org.eclipse.jetty.websocket:websocket-common."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-common@9.4.53.v20231009-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:2eda8f6b-323e-55fb-aada-b6f23b995b30",
      "id": "CVE-2023-36479",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2023-36479 affects version 9.4.53.v20231009-tuxcare.4 of org.eclipse.jetty.websocket:websocket-common."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-common@9.4.53.v20231009-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:0dc5f942-1c95-58fb-ae33-a708db1e4d67",
      "id": "CVE-2023-40167",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2023-40167 affects version 9.4.53.v20231009-tuxcare.4 of org.eclipse.jetty.websocket:websocket-common."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-common@9.4.53.v20231009-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:f7c844b8-2722-508d-bd86-df95f1346d85",
      "id": "CVE-2023-41900",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2023-41900 affects version 9.4.53.v20231009-tuxcare.4 of org.eclipse.jetty.websocket:websocket-common."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-common@9.4.53.v20231009-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:9eec19c9-5f81-5c08-969d-0aceefc09fd8",
      "id": "CVE-2024-13009",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2024-13009 is fixed in version 9.4.53.v20231009-tuxcare.4 of org.eclipse.jetty.websocket:websocket-common."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-common@9.4.53.v20231009-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:9777e5b0-bf9b-5f29-ac5c-8113f75cc8bf",
      "id": "CVE-2024-22201",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2024-22201 is fixed in version 9.4.53.v20231009-tuxcare.4 of org.eclipse.jetty.websocket:websocket-common."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-common@9.4.53.v20231009-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:53b3705b-9c2e-5bff-99f6-61e17c92c1ee",
      "id": "CVE-2024-6762",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2024-6762 is fixed in version 9.4.53.v20231009-tuxcare.4 of org.eclipse.jetty.websocket:websocket-common."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-common@9.4.53.v20231009-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:1a768fdc-3874-5c1d-8ed3-f8fcfa1e684a",
      "id": "CVE-2024-6763",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2024-6763 is fixed in version 9.4.53.v20231009-tuxcare.4 of org.eclipse.jetty.websocket:websocket-common."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-common@9.4.53.v20231009-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:25267ede-c6b0-50d0-b27a-8e90be89d84b",
      "id": "CVE-2024-9823",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2024-9823 is fixed in version 9.4.53.v20231009-tuxcare.4 of org.eclipse.jetty.websocket:websocket-common."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-common@9.4.53.v20231009-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:72887cf3-7a65-5ce8-8d08-b3fa3198a2fb",
      "id": "CVE-2025-11143",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2025-11143 is fixed in version 9.4.53.v20231009-tuxcare.4 of org.eclipse.jetty.websocket:websocket-common."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-common@9.4.53.v20231009-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:f24ead20-ad65-5a14-9038-bca34bed769e",
      "id": "CVE-2025-1948",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-1948 affects version 9.4.53.v20231009-tuxcare.4 of org.eclipse.jetty.websocket:websocket-common."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-common@9.4.53.v20231009-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:580074b1-8281-57e2-bd9b-6cbb006feec7",
      "id": "CVE-2025-5115",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-5115 affects version 9.4.53.v20231009-tuxcare.4 of org.eclipse.jetty.websocket:websocket-common."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-common@9.4.53.v20231009-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:04937c4d-e566-5b91-99e5-7951146b5717",
      "id": "CVE-2026-1605",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-1605 affects version 9.4.53.v20231009-tuxcare.4 of org.eclipse.jetty.websocket:websocket-common."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-common@9.4.53.v20231009-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:5e2ff3c4-b62d-5cbd-afea-ddf2c0c48ea8",
      "id": "CVE-2026-2332",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-2332 affects version 9.4.53.v20231009-tuxcare.4 of org.eclipse.jetty.websocket:websocket-common."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-common@9.4.53.v20231009-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:6f40e7c6-89a8-53f2-89ef-9f2a1a88e53c",
      "id": "CVE-2026-5795",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-5795 affects version 9.4.53.v20231009-tuxcare.4 of org.eclipse.jetty.websocket:websocket-common."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-common@9.4.53.v20231009-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:d8d0330b-c68f-5f4c-b175-c515140cde21",
      "id": "GHSA-58qw-p7qm-5rvh",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 9.4.53.v20231009-tuxcare.4 of org.eclipse.jetty.websocket:websocket-common."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-common@9.4.53.v20231009-tuxcare.4"
        }
      ]
    }
  ],
  "dependencies": [
    {
      "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-common@9.4.53.v20231009-tuxcare.4"
    }
  ]
}