{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:5bd777e9-68a2-53d3-bf56-908a88d7376c", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-deploy@9.4.53.v20231009-tuxcare.3", "type": "library", "group": "org.eclipse.jetty", "name": "jetty-deploy", "version": "9.4.53.v20231009-tuxcare.3", "purl": "pkg:maven/org.eclipse.jetty/jetty-deploy@9.4.53.v20231009-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:4292227f-ce29-57a4-923a-e941b0b603bf", "id": "CVE-2020-25711", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-25711 affects version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-deploy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-deploy@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:003dddfc-9a08-5ce5-ba9f-eae4ee0dee91", "id": "CVE-2020-27216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27216 affects version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-deploy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-deploy@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5881da09-f2a2-5e72-a3ac-9d64afb51cea", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-deploy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-deploy@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b791e375-d83a-5564-9286-df7f6fd66088", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-deploy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-deploy@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b68fc290-071b-5aa0-a3a2-9a7c0b6a4ad8", "id": "CVE-2023-36478", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36478 affects version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-deploy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-deploy@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:13355be9-2f94-59af-a8b3-17b0c91bbcef", "id": "CVE-2023-36479", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36479 affects version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-deploy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-deploy@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9ea1842a-84ae-5dea-a71c-efaa8934c574", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-deploy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-deploy@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:77cef9d0-fecb-5a8a-bccd-2adefd2146ec", "id": "CVE-2023-41900", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-41900 affects version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-deploy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-deploy@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:646f1e89-4533-508e-8aae-11d63749c790", "id": "CVE-2024-13009", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-13009 is fixed in version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-deploy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-deploy@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ef3ff1e8-01aa-5424-ad06-8f9067538cfd", "id": "CVE-2024-22201", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22201 is fixed in version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-deploy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-deploy@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:925559bc-5ea5-59e7-a71a-56c320ac0f6e", "id": "CVE-2024-6762", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-6762 is fixed in version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-deploy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-deploy@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ebe47445-a7de-5a0e-b4f1-091c9625d159", "id": "CVE-2024-6763", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-6763 is fixed in version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-deploy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-deploy@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:485713d7-d2c4-50af-b439-f3dede6495e5", "id": "CVE-2024-9823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-9823 is fixed in version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-deploy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-deploy@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:cbb90e59-150f-594e-9c11-8194a8c183fc", "id": "CVE-2025-11143", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-11143 is fixed in version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-deploy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-deploy@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:edf2f695-b9a4-54f7-8b83-5f6539c78ad6", "id": "CVE-2025-1948", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-1948 affects version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-deploy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-deploy@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8e85bdbb-edcf-55ff-b891-ecc1e744fc33", "id": "CVE-2025-5115", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-5115 affects version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-deploy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-deploy@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a647b9d4-9dba-5615-833d-955b1370c717", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-deploy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-deploy@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:528a740d-c99e-5fb6-bb86-c08ec3936b4b", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-deploy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-deploy@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3a02b788-09f5-5005-8c33-9f3470a542a6", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-deploy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-deploy@9.4.53.v20231009-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-deploy@9.4.53.v20231009-tuxcare.3" } ] }