{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:a58602a6-be72-54f2-88c6-c46036e8da65", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.1", "type": "library", "group": "org.eclipse.jetty", "name": "jetty-io", "version": "8.2.0.v20160908-tuxcare.1", "purl": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:9436b54b-2bc5-539e-856f-60487f21a8de", "id": "CVE-2015-2080", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2015-2080 is a false positive for org.eclipse.jetty:jetty-io 8.2.0.v20160908-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fc9cc15b-b307-5651-8a8d-3dd6de40601f", "id": "CVE-2017-7656", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7656 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-io." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:12258d15-f6b1-5d70-9d3b-670dcc133a1f", "id": "CVE-2017-7657", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7657 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-io." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:78282848-6425-55a8-9f50-9e3088748801", "id": "CVE-2017-7658", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7658 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-io." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a7b36fc3-0ab3-5faa-8050-770a473b7a2a", "id": "CVE-2017-9735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-9735 is fixed in version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-io." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5bc8b70b-a013-5808-a3af-dd3a7028a7a7", "id": "CVE-2018-12536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12536 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-io." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:85e86576-9b30-53f5-9691-47a95b490b90", "id": "CVE-2018-12538", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12538 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-io." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b07fccb8-713f-50ea-95a6-62f6cc038045", "id": "CVE-2018-12545", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12545 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-io." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3c7f0a7c-1b90-5967-b9e6-8437dbb61fb4", "id": "CVE-2019-10241", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10241 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-io." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cbbed37d-5163-559b-8979-3bb03e7cfbeb", "id": "CVE-2019-10246", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10246 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-io." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:da424532-5065-57be-9323-714da8b2ccfc", "id": "CVE-2019-10247", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-10247 is fixed in version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-io." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1e3ced15-a782-5b7f-ad5b-9ef703d9b5ee", "id": "CVE-2019-17638", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-17638 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-io." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:478823d7-94c2-5a58-8622-eda845636de6", "id": "CVE-2020-27216", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-27216 is fixed in version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-io." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2b95a0d6-16ec-50e7-a35f-99b301a2f476", "id": "CVE-2020-27218", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27218 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-io." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7e80a209-a700-5201-aafb-f7ee963da5b4", "id": "CVE-2021-28165", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-28165 is a false positive for org.eclipse.jetty:jetty-io 8.2.0.v20160908-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:41fd0813-75e4-5863-a516-8533a512578e", "id": "CVE-2021-28169", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-28169 is a false positive for org.eclipse.jetty:jetty-io 8.2.0.v20160908-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fb3c2423-db67-594c-bd6c-6ab6166b702f", "id": "CVE-2021-34428", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-34428 is fixed in version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-io." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:363fed62-0bd4-5180-8a28-8de61edea819", "id": "CVE-2022-2047", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-2047 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-io." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fc02676a-674e-5b5e-88e0-a4f8c342c487", "id": "CVE-2022-2048", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-2048 is a false positive for org.eclipse.jetty:jetty-io 8.2.0.v20160908-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7fd03961-1dbb-57b4-9b0b-7ea6dc6317f5", "id": "CVE-2023-26048", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26048 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-io." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:752c954d-82ec-56e9-8006-4ff1d7fb079a", "id": "CVE-2023-26049", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26049 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-io." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b931da3f-eae9-5ca3-ad42-114e0bc0fd0e", "id": "CVE-2023-36479", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36479 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-io." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4731f388-9ccd-5570-89d5-2521b614f191", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-io." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2e971ca3-0990-545b-b379-1b2af68447c6", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-io." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9f75052c-04c6-52c3-aac9-3db82d76da2c", "id": "CVE-2024-13009", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-13009 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-io." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b91ef19b-cccb-59e2-ad8c-a1901ff97095", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-io." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f69688ef-ced1-5480-8d55-cc65e260fc0c", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-io." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4cf49a24-58e0-5b74-bed8-1e24c3844e94", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-io." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0c5697e2-16fb-5fb1-b0c7-2801c9fa393a", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-io." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:96126b39-f140-5fb3-a7b1-0d961c237bfe", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-io." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e4fc3971-1fe9-56ae-a4ba-7a50f751acd3", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-io." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:442a7435-f8e2-57cd-95d5-0b073dac39f0", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-io." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a5c413c3-7f35-5b82-8504-44fe96700c51", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-io." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.1" } ] }