{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:04292499-8689-52e9-aff5-5f06a7913d2d", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-annotations@9.4.53.v20231009-tuxcare.2", "type": "library", "group": "org.eclipse.jetty", "name": "jetty-annotations", "version": "9.4.53.v20231009-tuxcare.2", "purl": "pkg:maven/org.eclipse.jetty/jetty-annotations@9.4.53.v20231009-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:89360d1c-4da9-53e6-9606-e960ab0bd659", "id": "CVE-2020-25711", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-25711 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-annotations." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-annotations@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ae55bd21-db18-59c1-b222-b27d811dcc97", "id": "CVE-2020-27216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27216 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-annotations." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-annotations@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e601edcd-5bc4-5816-8aff-cea8ace0173f", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-annotations." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-annotations@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8a3942be-ec58-5b5f-bd75-fdf08d513f63", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-annotations." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-annotations@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a5ca6b02-09d0-5c08-92e8-d693230c4fd6", "id": "CVE-2023-36478", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36478 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-annotations." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-annotations@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6d09cdbe-67bc-5ca9-ae97-19704b2b51ff", "id": "CVE-2023-36479", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36479 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-annotations." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-annotations@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c8012d1d-49be-5436-b860-1defd1b2674b", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-annotations." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-annotations@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:41db97c7-9d61-500a-8d6e-f03e221ae281", "id": "CVE-2023-41900", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-41900 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-annotations." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-annotations@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:72c85a3e-19ce-5293-aef3-e6deec4f0045", "id": "CVE-2024-13009", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-13009 is fixed in version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-annotations." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-annotations@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:394905a9-d04b-5bac-a4d6-b06ffdedb00e", "id": "CVE-2024-22201", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22201 is fixed in version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-annotations." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-annotations@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ec96907b-94c3-5706-ae03-bb93fbf4bd3c", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-annotations." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-annotations@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bab1e0c3-931f-55b8-b5a6-89f5729bd9d5", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-annotations." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-annotations@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e22e7678-9ea7-535a-a068-8d5bd2607428", "id": "CVE-2024-9823", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-9823 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-annotations." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-annotations@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2fe4221a-1aa0-58ab-8852-eb1aed3c0ed0", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-annotations." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-annotations@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:74b1da5c-2b3e-5cc9-b7b6-4b8474708d96", "id": "CVE-2025-1948", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-1948 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-annotations." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-annotations@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a177ca15-2194-5ebb-b1c7-3721a4239961", "id": "CVE-2025-5115", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-5115 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-annotations." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-annotations@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:095832da-3844-5224-a1f2-03d7defe20a0", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-annotations." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-annotations@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7e6ffedf-2549-558f-91f4-3337c287d342", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-annotations." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-annotations@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1ea24e8f-f028-5941-bafa-1e0b8da5cd06", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-annotations." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-annotations@9.4.53.v20231009-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-annotations@9.4.53.v20231009-tuxcare.2" } ] }