{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:4b8e9cd2-2d6b-539b-ab61-afb4f967a112", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.1", "type": "library", "group": "org.eclipse.jetty", "name": "jetty-security", "version": "8.2.0.v20160908-tuxcare.1", "purl": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:2cf4e11d-8205-548a-a95c-915590ca0a5c", "id": "CVE-2015-2080", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2015-2080 is a false positive for org.eclipse.jetty:jetty-security 8.2.0.v20160908-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ad6f36ab-d777-5629-9c0c-785d4151bf6c", "id": "CVE-2017-7656", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7656 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-security." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a5088307-5374-5ba2-b396-d8a22c5a6522", "id": "CVE-2017-7657", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7657 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-security." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e47868b0-ff12-5a78-bc11-15596dfa7149", "id": "CVE-2017-7658", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7658 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-security." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c6ccf8d4-be96-5a6f-b881-d31f4f18c7f2", "id": "CVE-2017-9735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-9735 is fixed in version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-security." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f925904f-9f97-5cc9-b259-77c60b99e209", "id": "CVE-2018-12536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12536 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-security." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5356736c-3737-5e68-8ff2-7c7aee21e08b", "id": "CVE-2018-12538", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12538 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-security." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b80567aa-cb63-5b57-acac-27c5dd5aed0a", "id": "CVE-2018-12545", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12545 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-security." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1b91303c-4032-5b66-a35d-d605bce10950", "id": "CVE-2019-10241", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10241 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-security." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0d3d3a01-346c-5c4d-a612-df410751022c", "id": "CVE-2019-10246", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10246 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-security." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5387094a-9d0f-58bc-9f80-a1dc547df2c5", "id": "CVE-2019-10247", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-10247 is fixed in version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-security." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cd92a939-8d9b-5787-94cf-f5f5357fff1c", "id": "CVE-2019-17638", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-17638 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-security." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:362d0efa-1976-5e4b-9245-801463a71be5", "id": "CVE-2020-27216", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-27216 is fixed in version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-security." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:44a7a5d1-0469-53a8-b6a0-70dc406dcef7", "id": "CVE-2020-27218", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27218 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-security." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cf4dded9-3c9c-5dd7-81bc-2d56a87268fa", "id": "CVE-2021-28165", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-28165 is a false positive for org.eclipse.jetty:jetty-security 8.2.0.v20160908-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dc938e4f-f3b3-5e6c-a548-1a8f1598ef1d", "id": "CVE-2021-28169", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-28169 is a false positive for org.eclipse.jetty:jetty-security 8.2.0.v20160908-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fae4f816-335f-5a87-a79c-1da6cb9f5b78", "id": "CVE-2021-34428", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-34428 is fixed in version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-security." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:62dcef53-34fb-5785-9a5f-b876361a6b8c", "id": "CVE-2022-2047", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-2047 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-security." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e58bd141-6285-59ef-919e-33096d65840f", "id": "CVE-2022-2048", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-2048 is a false positive for org.eclipse.jetty:jetty-security 8.2.0.v20160908-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:98359b5e-f86d-54e2-a0dc-9411bc86722a", "id": "CVE-2023-26048", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26048 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-security." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:297a1756-13d1-5e4d-891a-fbfb78b431af", "id": "CVE-2023-26049", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26049 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-security." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:550b07d9-5ed8-5523-967b-108a6596abeb", "id": "CVE-2023-36479", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36479 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-security." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ced050d1-9c62-5596-a4a2-55959cccc5ee", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-security." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6152f884-f254-5bf2-a554-c1a3e1227451", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-security." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:35054c14-1178-5229-a627-3df3406c95d5", "id": "CVE-2024-13009", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-13009 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-security." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ef7d7759-6f81-5674-a1fa-7ebba23f0c61", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-security." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f60c3ba6-1ea8-5d10-b959-7c81bfcd11b3", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-security." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a3cffdf9-63d0-5738-98ed-cb1605940ac2", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-security." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2774a5db-909c-5661-ae5c-af8790fed15c", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-security." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:82ab77c5-e1f3-55c5-91f0-0bb9ad703228", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-security." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d94cfe90-2078-52ab-99ff-df9900872f59", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-security." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:95573d43-4b58-56ff-be49-c5993ee05006", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-security." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6d90ffe2-cde8-5f6a-b4e7-b7a36ffdbe27", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-security." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.1" } ] }