{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:b3319c68-b339-583b-8632-280ee511d827", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-client@8.2.0.v20160908-tuxcare.2", "type": "library", "group": "org.eclipse.jetty", "name": "jetty-client", "version": "8.2.0.v20160908-tuxcare.2", "purl": "pkg:maven/org.eclipse.jetty/jetty-client@8.2.0.v20160908-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:4bfe1a9c-2449-5a05-a8c2-618508513847", "id": "CVE-2015-2080", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2015-2080 is a false positive for org.eclipse.jetty:jetty-client 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c4ca3dee-66cb-5b3c-996c-4ab2d1bff0db", "id": "CVE-2017-7656", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7656 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7b187525-e94d-51a9-951b-7e4697ba48f2", "id": "CVE-2017-7657", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7657 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b6e0cc8a-1a1d-5884-9a1c-e450c39a02e4", "id": "CVE-2017-7658", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7658 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2a87b256-53f2-5723-af9f-a316aea9423f", "id": "CVE-2017-9735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-9735 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:21184fd4-2901-5006-89e3-72d8f6c52f8b", "id": "CVE-2018-12536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12536 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d2168b0b-1aa8-529d-afb3-66042e7b94b5", "id": "CVE-2018-12538", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12538 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:aae8c7de-f87a-5c54-93fa-1fbb7c5b9884", "id": "CVE-2018-12545", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12545 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0c0bbb82-229c-5a77-8991-df89458a1a1d", "id": "CVE-2019-10241", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10241 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ae330feb-e895-5327-8950-428c9b368ce7", "id": "CVE-2019-10246", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10246 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:143b8320-4c13-50a7-9eaf-b80e857b257e", "id": "CVE-2019-10247", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-10247 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:99052061-2969-5245-8188-33ac8b4a17fc", "id": "CVE-2019-17638", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-17638 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:70ce016e-984d-575f-8a96-5069c3ce47e9", "id": "CVE-2020-27216", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-27216 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e33e5c97-50a1-54b6-9b71-e580f7d37c1e", "id": "CVE-2020-27218", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27218 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7ef385b0-1e1c-5d49-8518-4e63de378df2", "id": "CVE-2021-28165", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-28165 is a false positive for org.eclipse.jetty:jetty-client 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0d48e2a3-722e-5cbf-8087-01db9dd61950", "id": "CVE-2021-28169", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-28169 is a false positive for org.eclipse.jetty:jetty-client 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:76ae6122-0532-5c36-b203-74d67a5af056", "id": "CVE-2021-34428", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-34428 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:380547bd-cfd7-554f-8de9-5fd4e207e3b0", "id": "CVE-2022-2047", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-2047 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:98eb6ada-3c53-581a-92a7-ea7bb76a228c", "id": "CVE-2022-2048", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-2048 is a false positive for org.eclipse.jetty:jetty-client 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4f179129-5c9e-556e-b07f-bcb45acfb6f9", "id": "CVE-2023-26048", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26048 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a43676ed-0677-533b-a9f1-8ed07b906c53", "id": "CVE-2023-26049", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26049 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8d183255-6611-5754-9566-f064fd1a0b47", "id": "CVE-2023-36479", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-36479 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:eec363da-a76c-5a36-a0ee-64d29a16a5fb", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ba3ce5d9-b14c-5087-8656-3858c7f557e9", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0ee2681c-9f05-59a8-974c-7ee33a1db58c", "id": "CVE-2024-13009", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-13009 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:65b97f37-d5c1-5456-8475-fc8909b9321f", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6049459b-f2ed-5a36-a4ac-bd44aabe7297", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6a8de5de-955d-507f-a433-c93d44d50acb", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5c4f1163-6510-54ef-935a-ecc3f1b698df", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ee1c1534-aa81-5fa2-ac4b-6326b2635eb7", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3b69043f-23c8-58cc-aca0-e747462b926a", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:592bde06-9afd-5c9f-9e78-4b099b96a45a", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:283094bd-60df-5850-a195-6847ae41b2d8", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@8.2.0.v20160908-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@8.2.0.v20160908-tuxcare.2" } ] }