{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:7d305424-d6d3-5cc2-a735-6e325f850d4f", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.1", "type": "library", "group": "org.eclipse.jetty", "name": "jetty-project", "version": "8.2.0.v20160908-tuxcare.1", "purl": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:41766b64-9df4-56d0-b3ac-e8453b7079b1", "id": "CVE-2015-2080", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2015-2080 is a false positive for org.eclipse.jetty:jetty-project 8.2.0.v20160908-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:29a79198-db94-5b35-9b3e-91b82ab85795", "id": "CVE-2017-7656", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7656 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:78a42f65-fa10-5fba-9d89-67836ff7d952", "id": "CVE-2017-7657", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7657 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f7b0d36d-b3bd-5b17-8824-79e5daf36c72", "id": "CVE-2017-7658", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7658 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0ebcd6f2-4941-5ba7-b2fa-4fc41537887c", "id": "CVE-2017-9735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-9735 is fixed in version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e2eff787-6971-502b-9653-5757ef4118fd", "id": "CVE-2018-12536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12536 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:34d29cc1-0a1a-5eab-b9b7-1dcee0f8c9d6", "id": "CVE-2018-12538", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12538 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:88fca563-e779-55ce-8802-e20e395d15a5", "id": "CVE-2018-12545", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12545 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:38416a45-9f21-5f2f-8a3e-0cc675a5ee41", "id": "CVE-2019-10241", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10241 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:57613fec-b8fc-5e01-83f0-1fa23d86ce9b", "id": "CVE-2019-10246", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10246 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fff8fee7-02d0-5eb5-ab30-cdccc88fec61", "id": "CVE-2019-10247", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-10247 is fixed in version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d3232225-f09f-5650-8f8c-4d3245eb646f", "id": "CVE-2019-17638", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-17638 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f482a208-e90e-58bd-b579-a617b22aa6e7", "id": "CVE-2020-27216", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-27216 is fixed in version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5855abb5-5cec-5481-ae4a-16abab4e7327", "id": "CVE-2020-27218", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27218 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a281f4b9-ff7b-5e3e-bbfc-ad1635a83a37", "id": "CVE-2021-28165", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-28165 is a false positive for org.eclipse.jetty:jetty-project 8.2.0.v20160908-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dfa7e44d-5ed5-51ea-94dd-ad51e36cf59e", "id": "CVE-2021-28169", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-28169 is a false positive for org.eclipse.jetty:jetty-project 8.2.0.v20160908-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fc004c34-0c64-501b-9bde-84a94ee579d4", "id": "CVE-2021-34428", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-34428 is fixed in version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:390e4594-8b27-556a-a767-b1ba5d42a12b", "id": "CVE-2022-2047", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-2047 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6f5d366b-ab33-5c61-a58d-f43aeeb45796", "id": "CVE-2022-2048", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-2048 is a false positive for org.eclipse.jetty:jetty-project 8.2.0.v20160908-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ab86a032-fa12-560d-a62e-52a43b1cfc3c", "id": "CVE-2023-26048", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26048 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1149bbac-3358-5c80-bc4e-71a6e4773850", "id": "CVE-2023-26049", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26049 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2b038c2e-4596-5750-9874-b626d2c88688", "id": "CVE-2023-36479", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36479 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:121c7204-72d9-5225-8553-06531f95f514", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2f9981b7-4e43-5029-aea7-636d44bd3bfd", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ef67013a-aeda-51c5-b510-6123235bc2ab", "id": "CVE-2024-13009", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-13009 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:961e79f0-5482-5aef-9457-8c3191987be1", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2b7e3e14-5609-5c76-9c1a-4fc783f1a676", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6c3cbb3c-b850-5055-b214-1e7b8553e8e8", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6691e35a-e0e6-5da9-9b20-2139da62d907", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bf9edb81-8024-56ae-a085-e1aa21044338", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:15d5458f-6a12-560a-ae3f-34d95ae21ce8", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2884b42b-4718-522d-86c8-4f91610c45f7", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a9133d69-a05d-5f5d-943e-1fb484714fdd", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.1" } ] }