{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:37657277-051c-5a56-9800-a6338c557a1b", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-jmx@9.4.53.v20231009-tuxcare.2", "type": "library", "group": "org.eclipse.jetty", "name": "jetty-jmx", "version": "9.4.53.v20231009-tuxcare.2", "purl": "pkg:maven/org.eclipse.jetty/jetty-jmx@9.4.53.v20231009-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:c05234c2-f219-5ed0-9dfd-d5e3b7aa877d", "id": "CVE-2020-25711", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-25711 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-jmx." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jmx@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8778290b-950f-552e-8a2c-bca9f788081a", "id": "CVE-2020-27216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27216 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-jmx." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jmx@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:26236459-c147-595c-a4e0-1f85f6417d65", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-jmx." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jmx@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6c4d4b7e-6871-5dd2-803f-e12b4fa9aef1", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-jmx." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jmx@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d3e621f5-4356-538a-b17b-b7bb208db325", "id": "CVE-2023-36478", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36478 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-jmx." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jmx@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:582e1caf-0a1e-5daf-aa21-c2f555799aae", "id": "CVE-2023-36479", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36479 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-jmx." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jmx@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:852c170d-f4ee-5cb3-bb6a-38d937f090e4", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-jmx." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jmx@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:672830d3-7b88-5425-92e5-6f9531a39f79", "id": "CVE-2023-41900", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-41900 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-jmx." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jmx@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cf513c1b-1118-53a0-84bd-eea71229d556", "id": "CVE-2024-13009", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-13009 is fixed in version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-jmx." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jmx@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c27f9de4-798b-54e7-b0f5-ad2f9cd0c1e1", "id": "CVE-2024-22201", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22201 is fixed in version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-jmx." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jmx@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1e8840fb-87a8-52a0-b2b4-1c607e524794", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-jmx." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jmx@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d2746320-930d-5271-a5ff-31a971f2f7fe", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-jmx." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jmx@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5a590869-2843-5e1e-9a86-72e1c7e5ee67", "id": "CVE-2024-9823", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-9823 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-jmx." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jmx@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5d53365a-cc3d-5cbf-a8b5-f4265af7abc4", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-jmx." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jmx@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3256310e-7030-5605-bfcd-0e2fd5f15b6c", "id": "CVE-2025-1948", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-1948 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-jmx." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jmx@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:96a4c31f-a07b-56de-8b2b-384e26910481", "id": "CVE-2025-5115", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-5115 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-jmx." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jmx@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:682444b2-3b0e-5524-9b0e-662a2d90c0e8", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-jmx." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jmx@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8446a62a-01fd-5d2e-b5ba-61625716228e", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-jmx." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jmx@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f50db5da-0aba-512a-99f1-e88818297d41", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-jmx." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jmx@9.4.53.v20231009-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jmx@9.4.53.v20231009-tuxcare.2" } ] }