{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:82a1f9d4-32d4-5ded-862d-fbe3624a3cb6", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/infinispan-embedded-query@9.4.53.v20231009-tuxcare.1", "type": "library", "group": "org.eclipse.jetty", "name": "infinispan-embedded-query", "version": "9.4.53.v20231009-tuxcare.1", "purl": "pkg:maven/org.eclipse.jetty/infinispan-embedded-query@9.4.53.v20231009-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:6ab4ede3-582a-5cc3-af05-b8986050d9ed", "id": "CVE-2020-25711", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-25711 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:infinispan-embedded-query." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-embedded-query@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:481154f9-4fbc-5e44-9eb3-6f4b15e8c341", "id": "CVE-2020-27216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27216 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:infinispan-embedded-query." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-embedded-query@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:55ff8f9c-295c-509c-b840-6c8de588b482", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:infinispan-embedded-query." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-embedded-query@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9768562f-bd6d-5a9d-9bfa-047e35902983", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:infinispan-embedded-query." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-embedded-query@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4c7eda70-a4a1-5dd2-aa0f-f3bb720c6756", "id": "CVE-2023-36478", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36478 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:infinispan-embedded-query." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-embedded-query@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7d8573ff-b0e2-52c0-95a6-9abcc2bba451", "id": "CVE-2023-36479", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36479 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:infinispan-embedded-query." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-embedded-query@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a0f6cf31-d31e-5826-9f15-ce78e85c8128", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:infinispan-embedded-query." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-embedded-query@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2cdc55ba-7e0a-5707-a0b2-e14d389b273b", "id": "CVE-2023-41900", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-41900 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:infinispan-embedded-query." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-embedded-query@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f8c98621-2664-5c85-ae51-2dd4bff92f04", "id": "CVE-2024-13009", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-13009 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:infinispan-embedded-query." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-embedded-query@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:73f4ecda-3a9c-55c6-b2de-adbc3e4f2fbf", "id": "CVE-2024-22201", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22201 is fixed in version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:infinispan-embedded-query." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-embedded-query@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:98cde65c-d409-58a2-a909-fff0c52b842b", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:infinispan-embedded-query." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-embedded-query@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2e4c9474-028c-59df-93d0-e17cf0a48a27", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:infinispan-embedded-query." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-embedded-query@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:34e2414c-12df-5f77-89dc-c1052c8577ce", "id": "CVE-2024-9823", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-9823 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:infinispan-embedded-query." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-embedded-query@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:00ce3444-f2d0-5e7e-b9c4-a2d9af4f2770", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:infinispan-embedded-query." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-embedded-query@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:976b7520-3c8c-5083-ab87-ec071cfc1fd6", "id": "CVE-2025-1948", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-1948 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:infinispan-embedded-query." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-embedded-query@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f60ff731-d4b7-54cc-8152-aa0c93bcb03d", "id": "CVE-2025-5115", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-5115 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:infinispan-embedded-query." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-embedded-query@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0c8f566b-7936-564d-922c-054487e83375", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:infinispan-embedded-query." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-embedded-query@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:20e86de1-fdd9-5269-8620-b42ee485399e", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:infinispan-embedded-query." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-embedded-query@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b8cdb1dc-895d-5ce4-b494-89b518e962eb", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:infinispan-embedded-query." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-embedded-query@9.4.53.v20231009-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-embedded-query@9.4.53.v20231009-tuxcare.1" } ] }