{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:cd9758dd-0e62-5924-ae4d-be78156f065c", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-ajp@8.2.0.v20160908-tuxcare.2", "type": "library", "group": "org.eclipse.jetty", "name": "jetty-ajp", "version": "8.2.0.v20160908-tuxcare.2", "purl": "pkg:maven/org.eclipse.jetty/jetty-ajp@8.2.0.v20160908-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:0643a818-9ff5-5ec2-b715-195b44a50585", "id": "CVE-2015-2080", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2015-2080 is a false positive for org.eclipse.jetty:jetty-ajp 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ajp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1edf05a0-7163-50fa-b022-258605ecd510", "id": "CVE-2017-7656", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7656 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-ajp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ajp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bef7ccbc-7609-5e8c-9b3d-4937ca281467", "id": "CVE-2017-7657", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7657 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-ajp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ajp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:168c8506-52be-5a47-9433-446c1d063939", "id": "CVE-2017-7658", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7658 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-ajp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ajp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:42f459d7-2f6a-5bf2-9a6c-b55c8f6c8a11", "id": "CVE-2017-9735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-9735 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-ajp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ajp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:302683b8-c7a2-5c21-827f-5b1f6e91398b", "id": "CVE-2018-12536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12536 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-ajp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ajp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:563c465f-a18a-55ee-a586-2c05efc9c16b", "id": "CVE-2018-12538", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12538 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-ajp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ajp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5af83d67-8fdc-56da-ac08-a7ffbc6b1365", "id": "CVE-2018-12545", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12545 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-ajp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ajp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:24d648f8-f9a2-5992-8f9b-5513f62546a9", "id": "CVE-2019-10241", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10241 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-ajp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ajp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cde18d8b-cbb5-5d63-9171-c100f9f6a877", "id": "CVE-2019-10246", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10246 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-ajp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ajp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e7e7045d-6918-5d01-bba8-e53c94bab349", "id": "CVE-2019-10247", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-10247 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-ajp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ajp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d40c8daa-bc35-5cbb-a2d1-b8a810dfe869", "id": "CVE-2019-17638", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-17638 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-ajp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ajp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c91453a0-372d-5a85-a2c8-78f9244b652c", "id": "CVE-2020-27216", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-27216 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-ajp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ajp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b2909de0-4a41-5e87-bba7-2642f8cce16c", "id": "CVE-2020-27218", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27218 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-ajp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ajp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7c369cd3-4cdd-5f24-9056-9aad9c6635bc", "id": "CVE-2021-28165", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-28165 is a false positive for org.eclipse.jetty:jetty-ajp 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ajp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ba3e011d-ae09-5959-b702-763d6faae7df", "id": "CVE-2021-28169", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-28169 is a false positive for org.eclipse.jetty:jetty-ajp 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ajp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ece8f040-ff92-5913-89e1-37b4a3826880", "id": "CVE-2021-34428", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-34428 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-ajp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ajp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:79591480-c732-5529-8595-370b8b6eb7ce", "id": "CVE-2022-2047", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-2047 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-ajp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ajp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1b861898-4af8-55a7-bc32-e80260221377", "id": "CVE-2022-2048", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-2048 is a false positive for org.eclipse.jetty:jetty-ajp 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ajp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3259676b-d576-5bd1-bddf-b112f3a23f91", "id": "CVE-2023-26048", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26048 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-ajp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ajp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3ad91afb-158e-57e0-ab1c-28f4c778b840", "id": "CVE-2023-26049", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26049 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-ajp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ajp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0d29d67f-c9fe-5f04-83c3-bf4acd30bff0", "id": "CVE-2023-36479", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-36479 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-ajp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ajp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:289e3fb4-e937-54d4-95f0-0ae54d5273cd", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-ajp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ajp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c91d1472-a71f-596f-99e0-9f1504a58a1a", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-ajp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ajp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:97e532e9-5188-5a6b-a419-c34e82012006", "id": "CVE-2024-13009", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-13009 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-ajp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ajp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2c493cd4-16f0-502e-9bf2-70125c9da5e6", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-ajp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ajp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5ba63637-10aa-5082-9070-eefb1a096f3f", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-ajp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ajp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0e3a57e4-edca-5710-ab74-d54ad2752cd3", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-ajp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ajp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2785c342-0e32-50d7-99f5-99824809b3c7", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-ajp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ajp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ff426863-2c68-58b3-a95f-0f6ab56bc9d4", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-ajp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ajp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7c4d2871-8253-52bd-9daa-d7252f9bf093", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-ajp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ajp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3f85052d-013b-5a42-b863-8c25d493911d", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-ajp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ajp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9a2920c7-45a2-586e-86b1-47b9df06280b", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-ajp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ajp@8.2.0.v20160908-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ajp@8.2.0.v20160908-tuxcare.2" } ] }