{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:8240c7bd-cc7a-5efc-8a9f-677899e1ab7d", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-bom@9.4.53.v20231009-tuxcare.3", "type": "library", "group": "org.eclipse.jetty", "name": "jetty-bom", "version": "9.4.53.v20231009-tuxcare.3", "purl": "pkg:maven/org.eclipse.jetty/jetty-bom@9.4.53.v20231009-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:001ee27e-a16f-5fcb-ba02-8025e59453f3", "id": "CVE-2020-25711", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-25711 affects version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-bom." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-bom@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:374c1148-850f-5044-bfc7-48e40c25ba22", "id": "CVE-2020-27216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27216 affects version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-bom." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-bom@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6c6ef0b0-285b-51a1-973f-0a03230d7a8a", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-bom." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-bom@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:86f76ffb-1d11-5044-9c69-d61434b043bf", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-bom." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-bom@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1c1734ce-e9ec-50c8-b921-6f8d97a53496", "id": "CVE-2023-36478", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36478 affects version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-bom." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-bom@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d5f53771-cf6f-51ec-b08d-563254a13ba2", "id": "CVE-2023-36479", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36479 affects version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-bom." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-bom@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6a21cf22-0221-5382-8b1a-a1f7bc0d7ed7", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-bom." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-bom@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6afd951e-9c16-5b0d-8f40-3df4b8f186ba", "id": "CVE-2023-41900", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-41900 affects version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-bom." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-bom@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ee15cb80-06e8-5127-a19d-fca604749951", "id": "CVE-2024-13009", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-13009 is fixed in version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-bom." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-bom@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2d05ad8b-65e0-560a-8b9b-7208e67e9c4d", "id": "CVE-2024-22201", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22201 is fixed in version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-bom." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-bom@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:059620e8-99a6-5582-9de3-a2ef423a2859", "id": "CVE-2024-6762", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-6762 is fixed in version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-bom." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-bom@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:85ac9d0f-6b26-5bcc-962e-3aa2f7076447", "id": "CVE-2024-6763", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-6763 is fixed in version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-bom." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-bom@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1dad376f-66c3-5b52-9b8c-f74aebf5ab09", "id": "CVE-2024-9823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-9823 is fixed in version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-bom." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-bom@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9ea47799-1305-5e1a-8e12-cfe453043264", "id": "CVE-2025-11143", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-11143 is fixed in version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-bom." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-bom@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1f328e55-e30b-5b3e-b92d-eb552a042ae1", "id": "CVE-2025-1948", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-1948 affects version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-bom." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-bom@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4143838c-c901-5187-8f1d-cb3f4fe058ec", "id": "CVE-2025-5115", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-5115 affects version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-bom." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-bom@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7702716d-1a0b-5011-8551-3d48a89520ed", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-bom." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-bom@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9ae9e7df-464d-5d24-9490-862de326aaf5", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-bom." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-bom@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b3a35536-32ce-5e56-9ce8-a505fd3c1d82", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-bom." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-bom@9.4.53.v20231009-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-bom@9.4.53.v20231009-tuxcare.3" } ] }