{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:d6510163-6cb1-5ffd-b634-ef59bf9bba9c", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.53.v20231009-tuxcare.3", "type": "library", "group": "org.eclipse.jetty", "name": "jetty-ant", "version": "9.4.53.v20231009-tuxcare.3", "purl": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.53.v20231009-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:5573d776-d1aa-5c81-96a5-94ccc7a014f8", "id": "CVE-2020-25711", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-25711 affects version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ce1519ba-e80d-5204-8add-783f8ae75d8e", "id": "CVE-2020-27216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27216 affects version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9193ac41-d91c-59c2-94a0-5b0fc1ee3af9", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:980a40a3-71ea-50eb-911d-bf7f2ed6a419", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:62b25cfe-6432-52b7-8dd8-b39cc4cd6d9d", "id": "CVE-2023-36478", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36478 affects version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:69c12836-576b-5cca-95a7-44ffffc4f43c", "id": "CVE-2023-36479", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36479 affects version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:185c6d0a-02f7-5ce7-9e51-e36203017cf6", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:69d15464-bce7-5c83-8821-3aaea97a9234", "id": "CVE-2023-41900", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-41900 affects version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d6a1b582-d4e2-5de0-b270-d960a6552a2d", "id": "CVE-2024-13009", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-13009 is fixed in version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3cd47093-116c-56e6-83e3-75644e7b2bc6", "id": "CVE-2024-22201", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22201 is fixed in version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:676599b5-ac02-59eb-a1c0-58817625f0e8", "id": "CVE-2024-6762", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-6762 is fixed in version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:934e342b-854f-5eb7-9719-6b08cf949437", "id": "CVE-2024-6763", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-6763 is fixed in version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:502452bf-9adf-517f-a6ff-bf35c44cc16e", "id": "CVE-2024-9823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-9823 is fixed in version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:cdb3ab88-df6f-54a9-9882-16936ae0b16e", "id": "CVE-2025-11143", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-11143 is fixed in version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0cb1881e-3e5c-5ef9-87f7-65d02b78068b", "id": "CVE-2025-1948", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-1948 affects version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:55a88638-fa6b-5f67-9c09-928dc45b5f35", "id": "CVE-2025-5115", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-5115 affects version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7f6aa00d-a41c-546c-8475-732db58fab85", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c957608e-f729-53ae-af63-22eaf9bbeea2", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1e48fbf0-97e7-54e1-9c50-29dd9a603620", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.53.v20231009-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.53.v20231009-tuxcare.3" } ] }