{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:9fcb935b-2561-5aba-a1fe-73a5a130df31", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.24.v20191120-tuxcare.1", "type": "library", "group": "org.eclipse.jetty", "name": "jetty-client", "version": "9.4.24.v20191120-tuxcare.1", "purl": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.24.v20191120-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:0fe56053-60df-5c57-bb24-3bb561e4bebd", "id": "CVE-2020-27216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27216 affects version 9.4.24.v20191120-tuxcare.1 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.24.v20191120-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:938561a0-df6a-593a-a740-7f644184899a", "id": "CVE-2020-27218", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27218 affects version 9.4.24.v20191120-tuxcare.1 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.24.v20191120-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:14f480b1-08c2-564a-b462-3be2eb0d737b", "id": "CVE-2020-27223", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27223 affects version 9.4.24.v20191120-tuxcare.1 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.24.v20191120-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:542b6ed1-6576-5ec8-b8f9-42d009800416", "id": "CVE-2021-28165", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28165 affects version 9.4.24.v20191120-tuxcare.1 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.24.v20191120-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:61b09727-aa29-5354-8401-af8eddde1bb6", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 9.4.24.v20191120-tuxcare.1 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.24.v20191120-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6e9164f7-a01d-58ca-8d93-d7e9c542bcf8", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 9.4.24.v20191120-tuxcare.1 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.24.v20191120-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:04d1b782-9080-5b96-8c4c-e4b63cbd2a39", "id": "CVE-2022-2047", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-2047 affects version 9.4.24.v20191120-tuxcare.1 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.24.v20191120-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1042624a-11b5-5bdc-97df-60a5412234b0", "id": "CVE-2022-2048", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-2048 affects version 9.4.24.v20191120-tuxcare.1 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.24.v20191120-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0b5f0adc-d0b8-5c99-848f-db2c6fc8e9e8", "id": "CVE-2023-26048", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26048 affects version 9.4.24.v20191120-tuxcare.1 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.24.v20191120-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:99b82750-7315-52a6-af59-991f16a866e7", "id": "CVE-2023-26049", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26049 affects version 9.4.24.v20191120-tuxcare.1 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.24.v20191120-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9599b12b-54f1-55db-bad3-a6cd6e2ab022", "id": "CVE-2023-36478", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36478 affects version 9.4.24.v20191120-tuxcare.1 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.24.v20191120-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a67c4445-be76-597c-b27f-49d70aa5d3ec", "id": "CVE-2023-36479", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-36479 is fixed in version 9.4.24.v20191120-tuxcare.1 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.24.v20191120-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1e41dd86-041f-5de9-a8de-4512b3ab9198", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 9.4.24.v20191120-tuxcare.1 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.24.v20191120-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dbbfbc3a-a948-5ff0-bcd5-79d2ec40f2e7", "id": "CVE-2023-41900", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-41900 is fixed in version 9.4.24.v20191120-tuxcare.1 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.24.v20191120-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c2ed7201-e84a-53f2-85bf-187e9712f845", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 9.4.24.v20191120-tuxcare.1 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.24.v20191120-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7cffe920-d6a5-5a78-9674-0d654c720d64", "id": "CVE-2024-13009", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-13009 affects version 9.4.24.v20191120-tuxcare.1 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.24.v20191120-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5aa59996-db43-5c3d-8521-849cf88fcdfa", "id": "CVE-2024-22201", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22201 affects version 9.4.24.v20191120-tuxcare.1 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.24.v20191120-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:839640ef-e995-5d7f-a649-3362e11fae60", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 9.4.24.v20191120-tuxcare.1 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.24.v20191120-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:88c7d799-1770-576f-af07-5f01e39c9f9e", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 9.4.24.v20191120-tuxcare.1 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.24.v20191120-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c5304ed9-f4a3-535d-8d41-90d62bde48c6", "id": "CVE-2024-9823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-9823 is fixed in version 9.4.24.v20191120-tuxcare.1 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.24.v20191120-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7596a25a-7238-54db-b2e3-320496747047", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 9.4.24.v20191120-tuxcare.1 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.24.v20191120-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:438d19be-267d-5b6d-a029-2297e10c7d7a", "id": "CVE-2025-1948", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-1948 affects version 9.4.24.v20191120-tuxcare.1 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.24.v20191120-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9b534960-bfe7-5995-933c-2e15f4294ca6", "id": "CVE-2025-5115", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-5115 affects version 9.4.24.v20191120-tuxcare.1 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.24.v20191120-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1395a6d3-dd17-5c0d-a989-451f49dbcb2f", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 9.4.24.v20191120-tuxcare.1 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.24.v20191120-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.24.v20191120-tuxcare.1" } ] }