{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:e2d85970-7fff-5ff6-99cc-f821b292d3ff", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/infinispan-common@9.4.53.v20231009-tuxcare.1", "type": "library", "group": "org.eclipse.jetty", "name": "infinispan-common", "version": "9.4.53.v20231009-tuxcare.1", "purl": "pkg:maven/org.eclipse.jetty/infinispan-common@9.4.53.v20231009-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:6f212da5-5e53-55a9-ba1e-9ac13cb1e292", "id": "CVE-2020-25711", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-25711 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:infinispan-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-common@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:13707ff3-85a9-576b-90ee-68757e6a2c6f", "id": "CVE-2020-27216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27216 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:infinispan-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-common@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4e156342-4cb3-5049-9938-cc406eaadadf", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:infinispan-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-common@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f2c3b675-791a-568e-bf12-a7ee107df77e", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:infinispan-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-common@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:58d5b14e-6e58-551d-a4ca-58fe69ce1c6a", "id": "CVE-2023-36478", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36478 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:infinispan-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-common@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:97219c16-2ec5-5acd-ae8e-779fc661dfaf", "id": "CVE-2023-36479", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36479 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:infinispan-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-common@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2107b669-fb63-53bb-8c6c-5f35630c082e", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:infinispan-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-common@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e4acdee9-1571-567b-bbb0-59a73b278cdf", "id": "CVE-2023-41900", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-41900 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:infinispan-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-common@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5a10c6e1-fe75-5ecc-92f6-efffada0cc8c", "id": "CVE-2024-13009", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-13009 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:infinispan-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-common@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:508c9e5b-a35d-5bdf-8d0c-ccc92338b395", "id": "CVE-2024-22201", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22201 is fixed in version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:infinispan-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-common@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2b1662ca-d677-579a-b4e6-1d8377e57545", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:infinispan-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-common@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:60c034cf-6e23-59f7-9451-745d301e7720", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:infinispan-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-common@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cc6a6305-3544-5ce2-9471-94b0940ac00d", "id": "CVE-2024-9823", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-9823 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:infinispan-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-common@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:37d1ceab-c418-5356-a588-eca527f8f0b0", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:infinispan-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-common@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:416ea063-b227-5556-aefd-999911c282bd", "id": "CVE-2025-1948", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-1948 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:infinispan-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-common@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9eb07918-9845-5636-ae60-ba48a18646e2", "id": "CVE-2025-5115", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-5115 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:infinispan-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-common@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ee98031c-7afe-53a9-968b-2d040c3955ae", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:infinispan-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-common@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1ba5e293-ab51-523f-bcf6-62020e40f6a5", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:infinispan-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-common@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1ec63e30-0692-5a1a-a2fd-06a1aa95219e", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:infinispan-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-common@9.4.53.v20231009-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-common@9.4.53.v20231009-tuxcare.1" } ] }