{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:37630c6b-afef-5cd6-8de5-33670bca4bfd", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.1", "type": "library", "group": "org.eclipse.jetty", "name": "jetty-jaspi", "version": "8.2.0.v20160908-tuxcare.1", "purl": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:eccebeed-548d-536a-b172-da75585088ce", "id": "CVE-2015-2080", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2015-2080 is a false positive for org.eclipse.jetty:jetty-jaspi 8.2.0.v20160908-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a233c192-3410-59dd-86ba-54ebb7475927", "id": "CVE-2017-7656", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7656 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d740cf5a-328d-5a8f-8e77-4b0273b95d19", "id": "CVE-2017-7657", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7657 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ddfb69a1-ea70-5da6-8ed4-c84e1bc02262", "id": "CVE-2017-7658", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7658 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6b0faf24-6891-5c8a-a47b-033fcd908c4f", "id": "CVE-2017-9735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-9735 is fixed in version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ae7ed911-2eb2-51a2-a1f2-56436bb9bec6", "id": "CVE-2018-12536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12536 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:17f5c69f-cf25-56d7-84ef-09228aa420cd", "id": "CVE-2018-12538", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12538 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:db42d563-a2ed-556e-b022-71f6e7f3f9bc", "id": "CVE-2018-12545", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12545 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:80f0fd1b-e6e9-5045-84dd-6ac7228d328c", "id": "CVE-2019-10241", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10241 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b26c320c-1788-5520-97ee-7f62b5f38cfd", "id": "CVE-2019-10246", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10246 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0c83e1be-2d07-5d04-b867-9c7f93babc84", "id": "CVE-2019-10247", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-10247 is fixed in version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:424cc76d-5657-5a50-9e6f-0fe03e0e19ea", "id": "CVE-2019-17638", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-17638 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9b6ff73d-8792-55b1-bb7e-1342c97e5f34", "id": "CVE-2020-27216", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-27216 is fixed in version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b342cdb3-9ab8-5044-ad4a-afb422b52f12", "id": "CVE-2020-27218", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27218 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:68dbbdcc-56f4-517f-a562-4ca7b360bd41", "id": "CVE-2021-28165", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-28165 is a false positive for org.eclipse.jetty:jetty-jaspi 8.2.0.v20160908-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2283ac68-cd0c-5105-8e54-8384ec28d5ca", "id": "CVE-2021-28169", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-28169 is a false positive for org.eclipse.jetty:jetty-jaspi 8.2.0.v20160908-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:077186fd-deb6-5a4e-9bfe-9ffa1bf894ca", "id": "CVE-2021-34428", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-34428 is fixed in version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6af42e82-72ad-56e2-b59a-796a946e6f88", "id": "CVE-2022-2047", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-2047 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e6b2d4ab-3f36-5934-83cb-65491b138af6", "id": "CVE-2022-2048", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-2048 is a false positive for org.eclipse.jetty:jetty-jaspi 8.2.0.v20160908-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4f5fdadb-d8e1-5c4b-8637-87b6de821bfc", "id": "CVE-2023-26048", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26048 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e3a2b22d-3699-5b32-a9ff-29c07d2f1e5d", "id": "CVE-2023-26049", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26049 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a80fef38-5c7b-50fa-ba8d-de783cab307f", "id": "CVE-2023-36479", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36479 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:60584731-eaf5-5f9f-b14d-500df113de6c", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:105c76f3-cabd-5df9-8b04-dca5f016442d", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ca69c347-a540-5e12-b064-9561ba051120", "id": "CVE-2024-13009", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-13009 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:00672f19-99af-52b2-a2d2-1f6314de1b19", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:297aaa3e-20ee-58ea-8b4e-22ac5ea4bec1", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cec96938-4be2-5f9e-a427-ba088db4a90b", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:12b68f6f-548b-5440-850d-ea45e0200b91", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:77642ab3-d297-5ebe-bfde-7fa62a16142e", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:73197934-844b-535e-a051-425164e223e7", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1359a637-43f5-57f8-9eca-1cb6cff2e2a0", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3cbdfd9c-aed7-570c-8a3c-27ef8018c52a", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.1" } ] }