{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:c221d6db-18bd-52ea-b880-a748379cfaa5", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-openid@9.4.53.v20231009-tuxcare.3", "type": "library", "group": "org.eclipse.jetty", "name": "jetty-openid", "version": "9.4.53.v20231009-tuxcare.3", "purl": "pkg:maven/org.eclipse.jetty/jetty-openid@9.4.53.v20231009-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:56d1ca36-3449-5562-86d0-0ee4bfc3f9f9", "id": "CVE-2020-25711", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-25711 affects version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-openid." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-openid@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:355316cc-cbe3-54d5-8a5c-632600df421d", "id": "CVE-2020-27216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27216 affects version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-openid." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-openid@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4f8ec78a-c29f-5f40-ac54-4c0a90997040", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-openid." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-openid@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:24195c62-a8f5-5c44-b110-2175a14c508b", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-openid." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-openid@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ba69de18-12d3-58b4-b0e4-f53e23f2e36f", "id": "CVE-2023-36478", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36478 affects version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-openid." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-openid@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2d51df9f-2f40-5214-b025-0be1ca819a73", "id": "CVE-2023-36479", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36479 affects version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-openid." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-openid@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:351bdd87-f77f-5206-83a5-b8e64e147e58", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-openid." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-openid@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e19fde9f-935d-5b6f-8d36-3d6b7ef4cbd6", "id": "CVE-2023-41900", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-41900 affects version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-openid." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-openid@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:177e521b-38d5-5238-96c2-d4496786fcfd", "id": "CVE-2024-13009", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-13009 is fixed in version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-openid." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-openid@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:41f05eaa-a99b-5a1f-ad23-44bbda1b2ce7", "id": "CVE-2024-22201", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22201 is fixed in version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-openid." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-openid@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fe93e000-dfd2-58ea-8b35-2abc87d78e37", "id": "CVE-2024-6762", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-6762 is fixed in version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-openid." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-openid@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:cda6d12e-0e0e-522e-9068-5b778c215a81", "id": "CVE-2024-6763", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-6763 is fixed in version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-openid." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-openid@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e47d7247-e124-52c2-b737-3fc85daf65e4", "id": "CVE-2024-9823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-9823 is fixed in version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-openid." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-openid@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:09997503-90f4-587e-b593-52cd92d9a00a", "id": "CVE-2025-11143", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-11143 is fixed in version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-openid." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-openid@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ae16771c-8931-5f30-97c5-647dd6a354a2", "id": "CVE-2025-1948", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-1948 affects version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-openid." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-openid@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:43c58e5d-cdcf-5331-a180-f1ea558a8bf1", "id": "CVE-2025-5115", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-5115 affects version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-openid." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-openid@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5e87120f-b25c-5321-afbe-99ea124bbb3e", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-openid." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-openid@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d46b3fa4-aaef-53e8-ba50-efc55b718176", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-openid." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-openid@9.4.53.v20231009-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f0b570a3-2e53-5c4d-8cf7-d817f1eef277", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 9.4.53.v20231009-tuxcare.3 of org.eclipse.jetty:jetty-openid." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-openid@9.4.53.v20231009-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-openid@9.4.53.v20231009-tuxcare.3" } ] }