{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:f4c271f4-cc1f-5da2-afe4-32b00b965764", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.2", "type": "library", "group": "org.eclipse.jetty", "name": "jetty-io", "version": "8.2.0.v20160908-tuxcare.2", "purl": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:1398050e-e380-5d62-8920-0d6ef3cee673", "id": "CVE-2015-2080", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2015-2080 is a false positive for org.eclipse.jetty:jetty-io 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3e010e4c-049a-5d4f-a305-13911bce24a1", "id": "CVE-2017-7656", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7656 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-io." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ddaff0a6-4fe8-5672-837a-14de65393299", "id": "CVE-2017-7657", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7657 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-io." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f578048c-7b9f-54bd-832e-975e72120b3a", "id": "CVE-2017-7658", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7658 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-io." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:652acb70-7155-51d8-9d65-6ef1c32b7d13", "id": "CVE-2017-9735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-9735 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-io." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2aa75fdc-ec3e-576c-b7cf-6a18cbda5eab", "id": "CVE-2018-12536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12536 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-io." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cfe543f1-cb5b-50e8-8dc1-11924939496e", "id": "CVE-2018-12538", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12538 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-io." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2b8c4fe9-804b-50e4-b011-b3c9051b3bcb", "id": "CVE-2018-12545", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12545 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-io." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d5432cde-2717-56fb-83e5-7ad025cb5c5c", "id": "CVE-2019-10241", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10241 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-io." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:95413db4-6dd6-529d-8047-b961d54efff0", "id": "CVE-2019-10246", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10246 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-io." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7810b2a3-2e04-519b-a555-e1fca33de471", "id": "CVE-2019-10247", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-10247 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-io." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c8c7c7be-5ab6-5c74-86fb-ce1568734176", "id": "CVE-2019-17638", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-17638 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-io." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2ec6a3b0-3bb6-5805-999d-e712cf77e40b", "id": "CVE-2020-27216", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-27216 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-io." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0236176e-b6fa-5935-b092-3ba998c3a3f4", "id": "CVE-2020-27218", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27218 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-io." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:944e8974-f205-5ed7-96b5-38babd49ab18", "id": "CVE-2021-28165", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-28165 is a false positive for org.eclipse.jetty:jetty-io 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:44a8f5fc-9643-5597-bcc0-64261d863136", "id": "CVE-2021-28169", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-28169 is a false positive for org.eclipse.jetty:jetty-io 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:93ed4855-b874-55d2-9721-278e267b4914", "id": "CVE-2021-34428", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-34428 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-io." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:12fca149-b692-50ff-92fc-b11d20371eff", "id": "CVE-2022-2047", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-2047 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-io." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7dae9854-1f5d-515f-9399-0e80df2919c5", "id": "CVE-2022-2048", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-2048 is a false positive for org.eclipse.jetty:jetty-io 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d536ab04-f1ca-5c56-820b-b21714fc44c6", "id": "CVE-2023-26048", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26048 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-io." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8f9f5a95-5b30-59b2-9c2b-341ae9a1bbcc", "id": "CVE-2023-26049", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26049 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-io." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:31b421b1-d9ae-55f8-912e-b992e3212e8c", "id": "CVE-2023-36479", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-36479 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-io." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:479b5ad2-5050-5a62-9670-ddfc7f73a4ed", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-io." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:253b5623-6dde-5f84-bdca-53bad3d433ca", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-io." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:db40caa7-c3cf-526f-a2ff-aeb1fbf5694e", "id": "CVE-2024-13009", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-13009 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-io." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e3b5eba3-e1e1-51a2-a91f-bcaa3c427c2b", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-io." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:933c7e41-c89e-5ddd-a658-07289abefc73", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-io." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ff239856-4ad3-531c-8e07-9bc14c657beb", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-io." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9b3b0a57-408c-57c0-80f5-28d788bdf1b3", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-io." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:24daada3-e93a-517e-b726-6def80a9fead", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-io." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6b4a9055-ff6f-57ca-8132-1fa12c4a2e3b", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-io." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b996b9be-327d-559a-8ef9-e4d16ced0a11", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-io." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:56362e76-af01-5d8b-aca3-2066bd6f97df", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-io." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-io@8.2.0.v20160908-tuxcare.2" } ] }