{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:92b154fe-132e-5a07-9fc2-638a2a23b25c", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.2", "type": "library", "group": "org.eclipse.jetty", "name": "jetty-jndi", "version": "8.2.0.v20160908-tuxcare.2", "purl": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:c111214b-4ca7-52c5-9217-ede96e404418", "id": "CVE-2015-2080", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2015-2080 is a false positive for org.eclipse.jetty:jetty-jndi 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8a004413-eb7b-5180-b92d-677c465c598c", "id": "CVE-2017-7656", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7656 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jndi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d4438b04-a1e9-554b-a5bf-bde09e043339", "id": "CVE-2017-7657", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7657 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jndi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b21e8704-ef33-5465-8cf0-b151b197f7ca", "id": "CVE-2017-7658", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7658 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jndi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b8cc5597-f1d6-5597-9262-cdbb88d4a8cb", "id": "CVE-2017-9735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-9735 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jndi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:645bbf4e-687d-5311-b139-800e0123fda1", "id": "CVE-2018-12536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12536 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jndi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c8dffb28-1b40-5010-b25c-8e50c5f0b442", "id": "CVE-2018-12538", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12538 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jndi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7523bf98-4a51-5457-b770-6667e97d077b", "id": "CVE-2018-12545", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12545 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jndi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:48d3865d-eb35-55ff-b4c4-1608ca97ede4", "id": "CVE-2019-10241", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10241 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jndi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:20cea758-8d46-5d23-a3ce-3de125de9a8f", "id": "CVE-2019-10246", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10246 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jndi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cb08adc1-02c2-5d71-b84a-602c77729469", "id": "CVE-2019-10247", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-10247 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jndi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7cb703ef-adf0-5e81-9411-4f0031b23889", "id": "CVE-2019-17638", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-17638 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jndi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9903a135-7bfc-5a71-8966-c9724d374257", "id": "CVE-2020-27216", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-27216 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jndi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:43b462e8-7fdd-587f-bb42-16ce0772ba00", "id": "CVE-2020-27218", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27218 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jndi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:37ac7135-86ca-5bd9-9a6b-cf9e41936d06", "id": "CVE-2021-28165", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-28165 is a false positive for org.eclipse.jetty:jetty-jndi 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:396117a2-911e-54dd-a4a2-9ba9d447f913", "id": "CVE-2021-28169", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-28169 is a false positive for org.eclipse.jetty:jetty-jndi 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4cdb31a1-e591-5806-8bd5-ea7b3ac13239", "id": "CVE-2021-34428", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-34428 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jndi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cbd3d57d-cfdd-5381-b2a1-e33ef58e39ed", "id": "CVE-2022-2047", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-2047 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jndi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fe930fc5-b239-5891-8872-74c8d3a3dca5", "id": "CVE-2022-2048", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-2048 is a false positive for org.eclipse.jetty:jetty-jndi 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:17f90563-e73f-5dad-b096-1262b897ae8e", "id": "CVE-2023-26048", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26048 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jndi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2ae8079d-5624-514c-9484-e08688d16b72", "id": "CVE-2023-26049", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26049 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jndi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a22c6cac-24bc-5783-b161-df9781658ead", "id": "CVE-2023-36479", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-36479 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jndi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a3e3c9ed-0fcd-5f4e-9171-135bef09e6ba", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jndi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3af08d95-df7e-5fb4-980d-0ae553660b48", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jndi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b33744e3-011d-52df-9067-bdf12f0445e5", "id": "CVE-2024-13009", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-13009 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jndi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a32f5e18-24ff-51e9-97da-6220580baf21", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jndi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7a4807d0-124e-5907-8ec6-09560fa6d25f", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jndi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e95dfd19-3207-5479-ad28-a7e82520bb53", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jndi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:02820b91-f344-5e6d-9629-aa5531578ac2", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jndi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bd9b75c0-014d-57a8-96b3-59fa89292363", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jndi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f0f37cf1-d49d-5c54-b7f2-cadff5d24f53", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jndi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:18fcb39b-4e57-51db-adf6-507b3126c2f0", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jndi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e0038781-cd48-5474-9286-addf4859f5e6", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jndi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jndi@8.2.0.v20160908-tuxcare.2" } ] }