{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:391882f4-6e12-5cfc-9fbf-310fbed1ea6e", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-jsp@8.2.0.v20160908-tuxcare.2", "type": "library", "group": "org.eclipse.jetty", "name": "jetty-jsp", "version": "8.2.0.v20160908-tuxcare.2", "purl": "pkg:maven/org.eclipse.jetty/jetty-jsp@8.2.0.v20160908-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:e82161f8-e05b-592c-9e78-2e972c484997", "id": "CVE-2015-2080", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2015-2080 is a false positive for org.eclipse.jetty:jetty-jsp 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jsp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:43da9a70-883b-571c-91bf-7a72ae34f698", "id": "CVE-2017-7656", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7656 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jsp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jsp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b40f5492-fd62-570f-9460-995e99dbec4c", "id": "CVE-2017-7657", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7657 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jsp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jsp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8cb571c3-f53f-5141-a116-9512d3affc8d", "id": "CVE-2017-7658", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7658 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jsp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jsp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a06b1037-3389-56c1-b222-bd468148a537", "id": "CVE-2017-9735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-9735 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jsp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jsp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ad732826-a174-531e-9e4a-23a7f40de8b1", "id": "CVE-2018-12536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12536 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jsp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jsp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2134dfd7-6445-5e60-b590-cc4f69f5073a", "id": "CVE-2018-12538", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12538 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jsp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jsp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:899c1156-9777-555a-a9c1-5f8da618c69b", "id": "CVE-2018-12545", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12545 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jsp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jsp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d7977c00-5b49-51b7-90b3-06c9dea2abf6", "id": "CVE-2019-10241", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10241 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jsp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jsp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1353bf44-6a9f-5cb8-ba98-737e3c012c30", "id": "CVE-2019-10246", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10246 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jsp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jsp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d5088048-dd42-5b4c-ac58-80d7cb7d4a63", "id": "CVE-2019-10247", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-10247 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jsp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jsp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:31583998-6b52-5b2a-b249-04de64fadbcb", "id": "CVE-2019-17638", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-17638 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jsp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jsp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bdaff0df-75ed-5a63-8dd8-32e5b1fe20fe", "id": "CVE-2020-27216", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-27216 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jsp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jsp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1254bcbf-d235-564f-ac9d-d66bb3fbdadb", "id": "CVE-2020-27218", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27218 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jsp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jsp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:aa6812d8-3c70-568e-8265-e04598d05f72", "id": "CVE-2021-28165", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-28165 is a false positive for org.eclipse.jetty:jetty-jsp 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jsp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:569eed5a-1d4e-5c5f-a3e9-4081c90d5676", "id": "CVE-2021-28169", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-28169 is a false positive for org.eclipse.jetty:jetty-jsp 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jsp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d53648da-50c2-5fbf-a66c-cc269ed6732f", "id": "CVE-2021-34428", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-34428 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jsp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jsp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f1aa2292-6382-5c94-a9b0-02642c4d62dc", "id": "CVE-2022-2047", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-2047 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jsp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jsp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:499912d6-daf5-5a70-bb30-aae8161744c2", "id": "CVE-2022-2048", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-2048 is a false positive for org.eclipse.jetty:jetty-jsp 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jsp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4519f250-f399-5f59-a085-a4cf0919956e", "id": "CVE-2023-26048", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26048 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jsp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jsp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e5e6590f-ce89-55b2-a20d-f3b403800603", "id": "CVE-2023-26049", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26049 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jsp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jsp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fea45b8b-b34a-53f1-8512-c4275367ce56", "id": "CVE-2023-36479", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-36479 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jsp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jsp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e4fb54be-458c-5a36-a97d-42a020f2946b", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jsp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jsp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:efe7fbb0-6382-51d8-a036-c9d9f3233e42", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jsp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jsp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6221b495-80d1-5687-ae82-f4eaa7e6ff9b", "id": "CVE-2024-13009", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-13009 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jsp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jsp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3bf09da2-3435-5e4c-9ecb-4fc667f90af4", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jsp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jsp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5332d852-dd0e-5871-b67c-3a41475dd82a", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jsp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jsp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bfa90c0c-f27e-5e6b-9708-4e9c0003af28", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jsp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jsp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8ec0136c-f549-59e6-a062-eb60eeb3d4f2", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jsp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jsp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6e464ead-12f1-5193-a96b-cfc77896098d", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jsp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jsp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ce095155-00da-58d5-8f78-1724ff7a86eb", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jsp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jsp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:63e1261a-76ec-5473-ac7c-16b85784818b", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jsp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jsp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:451cd8ee-261d-52f4-88f2-cedd062c6191", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-jsp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jsp@8.2.0.v20160908-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jsp@8.2.0.v20160908-tuxcare.2" } ] }