{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:097e1fa5-ad2b-5a5a-b427-c3ec1f1cf8f1", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.1", "type": "library", "group": "org.eclipse.jetty", "name": "jetty-jndi", "version": "8.2.0.v20160908-tuxcare.1", "purl": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:ad5078a8-3f9c-5c08-b4f9-1bd2aa176363", "id": "CVE-2015-2080", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2015-2080 is a false positive for org.eclipse.jetty:jetty-jndi 8.2.0.v20160908-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:585ca758-1fb7-507b-a067-562beb39138c", "id": "CVE-2017-7656", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7656 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-jndi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:26e028ae-a13e-5884-97b8-c0d1800875a2", "id": "CVE-2017-7657", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7657 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-jndi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fb8453fc-f1b1-5c8c-a71c-cb7dbc6f0d66", "id": "CVE-2017-7658", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7658 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-jndi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b155daf1-d6f0-569c-828e-34786574834d", "id": "CVE-2017-9735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-9735 is fixed in version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-jndi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:53440035-cb66-5c4b-80d6-168967c445ed", "id": "CVE-2018-12536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12536 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-jndi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a6982fc9-12f9-5d52-ac57-91e93209bd25", "id": "CVE-2018-12538", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12538 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-jndi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1595127d-3978-55f8-bd9c-a98abc3cc0ff", "id": "CVE-2018-12545", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12545 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-jndi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:476d66cc-c108-564e-9cb9-16f2b0d8ee10", "id": "CVE-2019-10241", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10241 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-jndi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1914fdba-075c-5bb4-9222-0a6ead7a2c1a", "id": "CVE-2019-10246", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10246 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-jndi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9a8a1a8a-8267-51f8-b2c3-43ddc15c3c60", "id": "CVE-2019-10247", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-10247 is fixed in version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-jndi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bbc44f4e-cca3-5352-b486-76e7c58754cf", "id": "CVE-2019-17638", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-17638 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-jndi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6af30a36-ad04-5836-b488-f870a39ad57f", "id": "CVE-2020-27216", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-27216 is fixed in version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-jndi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:34886fbc-3161-55bb-bc42-535b17671b76", "id": "CVE-2020-27218", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27218 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-jndi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6196545a-2db9-5561-9f5d-a4187c4b585d", "id": "CVE-2021-28165", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-28165 is a false positive for org.eclipse.jetty:jetty-jndi 8.2.0.v20160908-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7208115d-6e8d-5c61-872d-e0bfa4848695", "id": "CVE-2021-28169", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-28169 is a false positive for org.eclipse.jetty:jetty-jndi 8.2.0.v20160908-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8702d394-476e-565f-a6df-25fe63db54e0", "id": "CVE-2021-34428", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-34428 is fixed in version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-jndi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3161f66f-2f00-5924-9012-79292bf64282", "id": "CVE-2022-2047", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-2047 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-jndi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:44417333-297c-5a3b-98b1-271d405f03a9", "id": "CVE-2022-2048", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-2048 is a false positive for org.eclipse.jetty:jetty-jndi 8.2.0.v20160908-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bb737e9b-7c6b-5c81-b95a-b4c841fc3ea5", "id": "CVE-2023-26048", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26048 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-jndi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b44c9de1-65b5-56d5-b810-7caa5bb187fe", "id": "CVE-2023-26049", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26049 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-jndi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ee6b81b2-9ed3-5f34-b952-752bffe2d1a8", "id": "CVE-2023-36479", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36479 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-jndi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8f3043dd-3d39-5593-b352-2a79f2745b7e", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-jndi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:794d583d-555d-5c03-a02a-024d2d151be7", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-jndi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:55e0b263-21ea-562a-a23d-98e16e83ad09", "id": "CVE-2024-13009", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-13009 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-jndi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8481042a-cd26-5363-8dbc-e2d96c845d0c", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-jndi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b8ec319c-7390-5d44-bf37-988fe4be3503", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-jndi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c0a06b6d-5886-5687-9974-0ef4ffe85830", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-jndi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fab52a28-e13e-5702-a12a-83c827d0f2d5", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-jndi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6e28229b-b0f4-5d9c-8503-29f0dcd18dfa", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-jndi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c4c2a5b7-27ab-5ee6-8887-36de220c0bf2", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-jndi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:13a7949f-b96b-5e86-b8e9-c4973da892fc", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-jndi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a202c852-9708-56f8-8997-e46113a82323", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-jndi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.1" } ] }