{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:5fd20264-4635-5ff3-b43e-004dd0008af0", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-plus@8.2.0.v20160908-tuxcare.2", "type": "library", "group": "org.eclipse.jetty", "name": "jetty-plus", "version": "8.2.0.v20160908-tuxcare.2", "purl": "pkg:maven/org.eclipse.jetty/jetty-plus@8.2.0.v20160908-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:0acf932b-fa73-59a6-8b46-65d60f22a473", "id": "CVE-2015-2080", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2015-2080 is a false positive for org.eclipse.jetty:jetty-plus 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1c6b3b29-c74e-5f23-bf3a-c5e40ed16cce", "id": "CVE-2017-7656", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7656 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-plus." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:239a9354-a98d-55ce-b021-ac501cb66e2a", "id": "CVE-2017-7657", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7657 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-plus." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e7184d48-2d31-57f0-88ca-eb7e9ee56e56", "id": "CVE-2017-7658", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7658 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-plus." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5ed90fd3-ecff-54be-b22d-d6b7311aa60b", "id": "CVE-2017-9735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-9735 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-plus." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:30c3c079-7c42-50cb-972a-70177b127f7e", "id": "CVE-2018-12536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12536 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-plus." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:35772205-1021-5ca5-9bf5-6efe1ee6a506", "id": "CVE-2018-12538", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12538 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-plus." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c56e96ca-9d60-5b3c-9e83-9bbe9c3514e5", "id": "CVE-2018-12545", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12545 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-plus." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:64b8195d-e380-59d0-8f3a-dc98208c152d", "id": "CVE-2019-10241", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10241 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-plus." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b84b08ea-c205-5e8e-8f05-7c650474ad62", "id": "CVE-2019-10246", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10246 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-plus." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:65256399-a7cb-5139-b766-80273dc5fcb6", "id": "CVE-2019-10247", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-10247 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-plus." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:867a6f77-e826-5f01-b1ad-98f1510ef633", "id": "CVE-2019-17638", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-17638 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-plus." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:761d0b98-6ea0-5920-b5fc-22c4ecc9479e", "id": "CVE-2020-27216", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-27216 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-plus." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:aad785b5-f09e-57c5-b8b2-052305b44f2d", "id": "CVE-2020-27218", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27218 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-plus." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:59c392da-6d79-5925-8bec-d0ed64f7a753", "id": "CVE-2021-28165", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-28165 is a false positive for org.eclipse.jetty:jetty-plus 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:631f43da-f558-545c-83b5-9a85bb99f9a8", "id": "CVE-2021-28169", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-28169 is a false positive for org.eclipse.jetty:jetty-plus 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0e12f996-d574-5b6c-93fc-71bb3ef2b0c4", "id": "CVE-2021-34428", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-34428 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-plus." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6273424f-9ada-5d64-9d07-c74a4e882e37", "id": "CVE-2022-2047", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-2047 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-plus." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:79e2e719-ce47-5178-92cc-d92b1a253e39", "id": "CVE-2022-2048", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-2048 is a false positive for org.eclipse.jetty:jetty-plus 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f473e3e4-a10c-5abf-88be-552e931e8e1c", "id": "CVE-2023-26048", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26048 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-plus." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ee63aaba-2ad0-5325-ba53-c2cffe6d766e", "id": "CVE-2023-26049", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26049 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-plus." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:94a3be7e-e231-5725-b90c-038bd0bbb884", "id": "CVE-2023-36479", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-36479 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-plus." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bab58b41-0104-5450-bdf5-f914366996f1", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-plus." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ec66fbba-d16c-5c59-a331-bc8723c0ff56", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-plus." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:02eb7137-7752-53f2-924a-d82c529fc254", "id": "CVE-2024-13009", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-13009 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-plus." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:40453d81-8d02-5014-85dc-bc3477e3a18b", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-plus." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cea8ba5c-9c89-502e-a8df-10711644eb29", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-plus." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:59cbb6a5-c0d5-54d9-9944-07a7f3a1ccc3", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-plus." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:311eada5-0786-5d9d-9d63-f31bb7b7426a", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-plus." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5c5de8e0-c088-5f7b-ac7f-286bb3596b75", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-plus." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:22f075f1-1dbd-5b47-bf1c-c443cf9368f4", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-plus." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6ec05820-d6da-59a5-9911-7342b0331214", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-plus." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:849f6412-34c4-5841-84b6-2388420d9261", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-plus." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@8.2.0.v20160908-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@8.2.0.v20160908-tuxcare.2" } ] }