{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:28d57813-dc7c-5838-9aaa-e33471f210e1", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-java-client@9.4.53.v20231009-tuxcare.3", "type": "library", "group": "org.eclipse.jetty", "name": "jetty-alpn-java-client", "version": "9.4.53.v20231009-tuxcare.3", "purl": "pkg:maven/org.eclipse.jetty/jetty-alpn-java-client@9.4.53.v20231009-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:8c19d997-6da0-5d9a-ba9a-408ab88a77f6", "id": "CVE-2020-25711", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-25711 affects version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-alpn-java-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-java-client@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:86124287-f31c-5217-a06f-44fb0c3baa28", "id": "CVE-2020-27216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27216 affects version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-alpn-java-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-java-client@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8dc1fbe9-cb53-54d9-aa6d-1a855b786393", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-alpn-java-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-java-client@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:83bdd440-3f71-5441-9d13-fbc531c6fb14", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-alpn-java-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-java-client@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e6d1cd59-6efa-5dae-b95e-cdc9281c6590", "id": "CVE-2023-36478", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36478 affects version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-alpn-java-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-java-client@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1797e602-039d-5043-826f-0d09de5b51a3", "id": "CVE-2023-36479", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36479 affects version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-alpn-java-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-java-client@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:48ee9b87-9d75-5703-ba41-d79c63914f65", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-alpn-java-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-java-client@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e5b99568-5e06-56ab-b1b1-ed582bcf3b12", "id": "CVE-2023-41900", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-41900 affects version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-alpn-java-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-java-client@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4164f828-6a93-5101-acd7-62a0b4cd1061", "id": "CVE-2024-13009", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-13009 is fixed in version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-alpn-java-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-java-client@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7fffff55-3457-5dce-956c-51a4ab4bd7a8", "id": "CVE-2024-22201", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22201 is fixed in version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-alpn-java-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-java-client@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8b572dbb-f4e9-517c-a7b8-0bfaa0cb7192", "id": "CVE-2024-6762", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-6762 is fixed in version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-alpn-java-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-java-client@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f6a29371-54af-56ec-bb34-0a413c274295", "id": "CVE-2024-6763", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-6763 is fixed in version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-alpn-java-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-java-client@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d2126d4f-f8a8-5eec-99d2-59b4876bdf8c", "id": "CVE-2024-9823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-9823 is fixed in version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-alpn-java-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-java-client@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:551b59ed-7098-527b-865c-da7aff837913", "id": "CVE-2025-11143", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-11143 is fixed in version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-alpn-java-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-java-client@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8f321218-576c-500b-9574-eb56f6ae6e5f", "id": "CVE-2025-1948", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-1948 affects version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-alpn-java-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-java-client@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:345b8f53-8c67-5cfa-934c-038b1ae68523", "id": "CVE-2025-5115", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-5115 affects version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-alpn-java-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-java-client@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4bafd028-e12f-5556-bcdc-4f569b1d9e7f", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-alpn-java-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-java-client@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:79d76974-ebc7-5279-aaaa-e89e5e20be71", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-alpn-java-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-java-client@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:18ea393e-72a0-5732-b241-9851cfca378b", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-alpn-java-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-java-client@9.4.53.v20231009-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-java-client@9.4.53.v20231009-tuxcare.3" } ] }