{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:30d65379-33f6-59c7-a6b8-f03d43c1988f", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.53.v20231009-tuxcare.1", "type": "library", "group": "org.eclipse.jetty", "name": "jetty-client", "version": "9.4.53.v20231009-tuxcare.1", "purl": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.53.v20231009-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:7733b78e-5118-594f-b8c3-49f162c92e3b", "id": "CVE-2020-25711", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-25711 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1e0ceef8-18dd-59fa-8a44-48ce793ad409", "id": "CVE-2020-27216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27216 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2d7be1bd-9d4d-5263-ac0b-e4e5e1151921", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3bcb8d97-8788-5c66-9f30-498f4f0d0478", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5aeb92e8-e2b8-54fb-b6aa-7c96126d3e03", "id": "CVE-2023-36478", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36478 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9eb06c50-566a-56f6-a231-4ba8e96ba5f4", "id": "CVE-2023-36479", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36479 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b01abe59-7bb7-5dae-83de-1c32baa63347", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f31ee5a2-ba56-5069-bb63-c3780fb0138d", "id": "CVE-2023-41900", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-41900 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0eb7684b-d999-5dac-907d-4174bb208f1d", "id": "CVE-2024-13009", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-13009 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:46e8f287-d204-528d-8bc5-684e0409fd15", "id": "CVE-2024-22201", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22201 is fixed in version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:62f863ee-ec8d-5ef9-8345-7fcf82897f83", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0767f64a-a272-520b-a355-914a73771f15", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:86d84e2b-70b8-5fe7-bd11-5323faed6ace", "id": "CVE-2024-9823", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-9823 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7fc56616-8b7f-5de9-bcb4-0301a73938f2", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:57ad93be-4ccd-5789-92d4-a18967dc1247", "id": "CVE-2025-1948", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-1948 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3528b603-5e3a-5647-9d56-926c5336b1c4", "id": "CVE-2025-5115", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-5115 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bbf25205-e69e-55f3-bbe0-29ee0fae8c3e", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cd5f0b4e-bf29-5def-b9dd-c8102dda5740", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ede4365e-5cd9-5d84-9a20-c51a7c37a772", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:jetty-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.53.v20231009-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.53.v20231009-tuxcare.1" } ] }