{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:96b3f172-44cd-569d-b5ad-b6465ced7cf5", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.53.v20231009-tuxcare.2", "type": "library", "group": "org.eclipse.jetty", "name": "jetty-ant", "version": "9.4.53.v20231009-tuxcare.2", "purl": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.53.v20231009-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:8411b694-14b2-54c6-a7ce-eb4ccc586d6c", "id": "CVE-2020-25711", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-25711 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:60cf9524-c376-5b03-8b53-e089001eb52a", "id": "CVE-2020-27216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27216 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f0d8bb0c-6ef2-59c9-a607-68fac118a093", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:07cf56db-0429-5051-a740-b2ccfb0e1eab", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9df8210b-508c-5778-8112-25f9eec0192e", "id": "CVE-2023-36478", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36478 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a2a9bf1d-a81e-5a13-9100-23dd8e20e321", "id": "CVE-2023-36479", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36479 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:52b96830-c1e7-5cf2-83f8-53198f288861", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8625c38d-a94c-5ab1-bf46-a81f7b47ce15", "id": "CVE-2023-41900", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-41900 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:72873469-fe7d-56b2-b3ac-61d83bf223c8", "id": "CVE-2024-13009", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-13009 is fixed in version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f55f2507-ec53-50c8-9d92-89aaff3121bb", "id": "CVE-2024-22201", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22201 is fixed in version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:41b82985-4fd3-57fc-8ae4-d137e7d9f381", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:48b8e086-709a-5660-868c-46a7a225392f", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:927b9fb2-a9e5-5000-b384-35dae3606b58", "id": "CVE-2024-9823", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-9823 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:51b1d938-e3ce-5958-b384-87e3afcc4aec", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0f4ec6a9-4266-561a-8aa8-6a5a21a33822", "id": "CVE-2025-1948", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-1948 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ec56ca1c-6ad4-5a7f-8cee-82a4191e629b", "id": "CVE-2025-5115", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-5115 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8027618d-e3c8-58cf-a09b-88ebb51152d6", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:20760b43-0144-5660-896d-8b86d03be0ca", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:56ef74b9-3909-55b7-aced-fd3fa9583e48", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.53.v20231009-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.53.v20231009-tuxcare.2" } ] }