{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:b68aa174-6bcd-5bd0-950e-874ecb9238a5", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.2", "type": "library", "group": "org.eclipse.jetty", "name": "jetty-project", "version": "8.2.0.v20160908-tuxcare.2", "purl": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:00ec6e7b-bd61-5e78-b3da-b41439620551", "id": "CVE-2015-2080", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2015-2080 is a false positive for org.eclipse.jetty:jetty-project 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1111fdcc-24db-580b-a4f7-d61fa5db7ac3", "id": "CVE-2017-7656", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7656 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9ac6f35b-73f6-577a-802f-92cdc017714d", "id": "CVE-2017-7657", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7657 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:335ddfe8-bcfb-5f2b-9eb4-1cc5a84bcc6b", "id": "CVE-2017-7658", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7658 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ffa1826d-f120-52de-9595-64beb7382bea", "id": "CVE-2017-9735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-9735 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c1bf5d5a-1b9e-5267-a632-d1184a56d734", "id": "CVE-2018-12536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12536 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:25a2186f-4c24-5af2-8a70-e0bcea82a734", "id": "CVE-2018-12538", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12538 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d186f799-d411-56a2-896a-072d0f9cdff4", "id": "CVE-2018-12545", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12545 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:12560eb1-4c7b-5422-995c-92cae1c1c31d", "id": "CVE-2019-10241", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10241 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ce71cc58-368a-5b8e-9463-c3724dcf9f3c", "id": "CVE-2019-10246", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10246 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8d2de69f-16e2-5d3a-b5e2-de79aa20d4f2", "id": "CVE-2019-10247", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-10247 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:43784bab-92bc-503a-ab1c-fd993623dad2", "id": "CVE-2019-17638", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-17638 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6fc6b91b-096c-5aac-b109-e0cbc7656064", "id": "CVE-2020-27216", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-27216 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1038d7c6-2178-5482-9d34-911049f27429", "id": "CVE-2020-27218", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27218 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fbee7d6e-99db-5d37-8185-33ba38e0036a", "id": "CVE-2021-28165", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-28165 is a false positive for org.eclipse.jetty:jetty-project 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:918592d8-9b0d-504a-9ed9-f96a20865308", "id": "CVE-2021-28169", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-28169 is a false positive for org.eclipse.jetty:jetty-project 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:21a22fee-24fb-5f8c-80ec-dad0cfdaf6da", "id": "CVE-2021-34428", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-34428 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:660225f1-cbc8-5031-b552-b8ebb0db76c3", "id": "CVE-2022-2047", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-2047 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8f46ce91-ab2f-507f-b421-2b4a88a76f9c", "id": "CVE-2022-2048", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-2048 is a false positive for org.eclipse.jetty:jetty-project 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8da1c459-ec9a-54e8-a45b-723e832e1b93", "id": "CVE-2023-26048", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26048 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1e30dcf0-2b41-5135-b929-678091cb54e3", "id": "CVE-2023-26049", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26049 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5dcfd84a-a37b-5ecc-b5bf-559ce8a7610d", "id": "CVE-2023-36479", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-36479 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:61e2ffcf-8372-5dc0-9390-d3eeb198c788", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e49a223f-2114-588a-9db5-e41ad51d37fa", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7af42477-235b-5e44-9685-3b28ea0b5b4c", "id": "CVE-2024-13009", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-13009 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:39236900-dd2e-51d5-832b-0c4d54e6373d", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6ba0cd0b-8ce6-5ced-b844-1592f127ef56", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:904e14a3-80a7-5ba4-b8cf-5576534bee6c", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:83e3a529-4754-5810-a5dd-0c61baf174cc", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cf4071dc-9275-5c45-a8c7-97bfb2070237", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b87c5f11-e88d-5e33-a75a-f55247fb4dfb", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:749b70e5-8771-57f8-b10d-32c2e4d9922b", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7acea180-848c-59a1-ae35-a28a4249f9c0", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@8.2.0.v20160908-tuxcare.2" } ] }