{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:3692cece-3d57-59dd-a000-c4ce8c206ce3", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-maven-plugin@9.4.53.v20231009-tuxcare.1", "type": "library", "group": "org.eclipse.jetty", "name": "jetty-maven-plugin", "version": "9.4.53.v20231009-tuxcare.1", "purl": "pkg:maven/org.eclipse.jetty/jetty-maven-plugin@9.4.53.v20231009-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:bc26e343-d682-5298-9e4e-d895c483a7b8", "id": "CVE-2020-25711", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-25711 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:jetty-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-maven-plugin@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7af53b0e-811d-5f6d-abc2-3b23fa4e2264", "id": "CVE-2020-27216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27216 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:jetty-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-maven-plugin@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a4024817-e002-5871-ba0e-fa89f80cc514", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:jetty-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-maven-plugin@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ef5993a1-6b55-5226-9a36-6f2d668ad1eb", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:jetty-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-maven-plugin@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:560eec8c-0bee-5b16-ad28-7e92222ccc5f", "id": "CVE-2023-36478", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36478 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:jetty-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-maven-plugin@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3f765012-e390-549e-8166-670e012dfc26", "id": "CVE-2023-36479", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36479 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:jetty-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-maven-plugin@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d428c8c4-6b11-5c66-b9bc-4ba451514059", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:jetty-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-maven-plugin@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:298e38f5-53cb-531e-bf32-4e26507c93a0", "id": "CVE-2023-41900", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-41900 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:jetty-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-maven-plugin@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:79190e97-295c-57ef-bcde-b34ab088b5a9", "id": "CVE-2024-13009", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-13009 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:jetty-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-maven-plugin@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f00bc5d2-6ffc-5126-aee9-ff5362597fed", "id": "CVE-2024-22201", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22201 is fixed in version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:jetty-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-maven-plugin@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:74c94f27-645d-571b-8201-2aaeb6d07d07", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:jetty-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-maven-plugin@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ea8e24cb-9a31-51a5-a570-66e567bfeaa3", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:jetty-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-maven-plugin@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0d8fbb7d-13a4-59a1-a83a-d8380f11477c", "id": "CVE-2024-9823", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-9823 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:jetty-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-maven-plugin@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d58384e3-caa0-5ece-8f6e-1aca20ae8bdd", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:jetty-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-maven-plugin@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e56e8000-c314-5ed9-a36f-7558305eb9cd", "id": "CVE-2025-1948", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-1948 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:jetty-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-maven-plugin@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2ce80111-5869-57c8-a43c-0db02e27c502", "id": "CVE-2025-5115", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-5115 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:jetty-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-maven-plugin@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:eb13c529-bb64-5105-8ced-edd5ae9b6efd", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:jetty-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-maven-plugin@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:530e2dc7-13c5-5d3b-be33-4c9e64e9ffdb", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:jetty-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-maven-plugin@9.4.53.v20231009-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:af65d82f-04c7-53df-862e-588d54c853ae", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 9.4.53.v20231009-tuxcare.1 of org.eclipse.jetty:jetty-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-maven-plugin@9.4.53.v20231009-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-maven-plugin@9.4.53.v20231009-tuxcare.1" } ] }