{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:3691dd9d-7470-5ae3-8a77-8cb70703f0ea", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.2", "type": "library", "group": "org.eclipse.jetty", "name": "jetty-jaspi", "version": "8.2.0.v20160908-tuxcare.2", "purl": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:86f08779-7c3b-5c29-a755-50e75d5b1bc6", "id": "CVE-2015-2080", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2015-2080 is a false positive for org.eclipse.jetty:jetty-jaspi 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:40865172-9277-5954-8289-2432ecc3ef02", "id": "CVE-2017-7656", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7656 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b6179d8b-699f-5fff-96d6-7eba8c31dca0", "id": "CVE-2017-7657", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7657 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f214cb4d-994c-515b-a0c0-c4b22f32b312", "id": "CVE-2017-7658", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7658 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:66939527-dd8b-50e0-9dda-ca78aa80e319", "id": "CVE-2017-9735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-9735 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fbeaf84e-c6b1-52d2-b43a-001d957c31d6", "id": "CVE-2018-12536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12536 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f833d2f2-196d-566a-befa-ce9d56ecf593", "id": "CVE-2018-12538", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12538 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:02de0571-d1ef-5468-94c9-d225459de13b", "id": "CVE-2018-12545", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12545 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ef2e23ce-3b93-59bf-80ed-b6f73bcc5729", "id": "CVE-2019-10241", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10241 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:37907fbf-36a5-5e60-b797-569f145b6ed5", "id": "CVE-2019-10246", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10246 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d023c7d0-9421-5a8b-813f-eeb6d9c7aed1", "id": "CVE-2019-10247", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-10247 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f24a6e8a-82bd-590e-ba6b-5009e2f8072d", "id": "CVE-2019-17638", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-17638 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bc1fa31a-d127-5191-a9e3-6fc553bb32ad", "id": "CVE-2020-27216", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-27216 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2f1fb2b5-3148-5246-8d7f-cbc2e76c9422", "id": "CVE-2020-27218", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27218 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8398c613-9466-5c04-b732-9bfad54166e4", "id": "CVE-2021-28165", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-28165 is a false positive for org.eclipse.jetty:jetty-jaspi 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:444d5a0c-1b11-5a42-914c-ca725fcb308f", "id": "CVE-2021-28169", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-28169 is a false positive for org.eclipse.jetty:jetty-jaspi 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:615df431-1cfe-5cc6-8995-15c56fffd67f", "id": "CVE-2021-34428", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-34428 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c648dd45-1d0f-5f7a-a3e6-8c850f3e6638", "id": "CVE-2022-2047", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-2047 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0c43f302-a9d2-52aa-9227-973409a53c09", "id": "CVE-2022-2048", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-2048 is a false positive for org.eclipse.jetty:jetty-jaspi 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ff945092-9df1-5071-bc6b-42b08686fbad", "id": "CVE-2023-26048", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26048 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3f79154d-9b2f-505c-a4d0-345483ad2e50", "id": "CVE-2023-26049", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26049 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:52af980b-c814-500f-9c80-9878e198037f", "id": "CVE-2023-36479", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-36479 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6b6bdba6-7c1e-52a0-a278-d7b672405f31", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f14fb9aa-0c5c-5820-b415-735fdd0b529c", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:287d629b-1cb5-56e7-a6d1-91b771be06d3", "id": "CVE-2024-13009", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-13009 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9e19ebd1-366f-56d7-8463-81b1e5a394bc", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f21f6e2a-ff91-5eaa-aa4e-1e53aba37a63", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:55db5752-ee6e-5d7e-8449-3a1630b22953", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1f46434b-c6b3-5064-bf86-91e18a970323", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:12540bcf-e5f9-559d-a957-ff537dd6da79", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a6a75a67-1309-570b-8bca-32f2bb05e88e", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3b6823c6-640c-5b7c-81ed-9c0a1922004e", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7724daad-d16f-5982-b1d4-ef48b987f846", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@8.2.0.v20160908-tuxcare.2" } ] }