{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:3b15ebea-c348-5a85-9569-f14cd76931c1", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.2", "type": "library", "group": "org.eclipse.jetty", "name": "jetty-security", "version": "8.2.0.v20160908-tuxcare.2", "purl": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:73cb76e7-7035-52cc-b12d-f80bfbf9e2db", "id": "CVE-2015-2080", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2015-2080 is a false positive for org.eclipse.jetty:jetty-security 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e1636776-d600-56b1-87d2-df148dfc41f9", "id": "CVE-2017-7656", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7656 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-security." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:25b330d1-c51a-52ff-90b8-35b4fb3d6cac", "id": "CVE-2017-7657", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7657 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-security." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f4f1b2ba-608e-5d11-902e-20390de58620", "id": "CVE-2017-7658", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7658 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-security." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:59383df6-a8d3-5289-a8cd-652e8b21aad6", "id": "CVE-2017-9735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-9735 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-security." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9a40b672-7d8a-59ac-8c8f-35d04c5924a6", "id": "CVE-2018-12536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12536 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-security." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d929e1fe-8196-5132-b133-0e669b15dee6", "id": "CVE-2018-12538", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12538 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-security." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:192a4425-8ea3-5258-b496-806a202d8474", "id": "CVE-2018-12545", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12545 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-security." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6b58a067-06da-5e75-aeaf-deea31454cf6", "id": "CVE-2019-10241", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10241 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-security." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d1cc94be-7d40-501c-b411-ce9ebad566c2", "id": "CVE-2019-10246", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10246 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-security." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:84177093-ab38-5f31-a5ed-f28e00f5bdf5", "id": "CVE-2019-10247", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-10247 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-security." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:378b8c4d-1abd-52ad-93f5-95bdc5d953aa", "id": "CVE-2019-17638", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-17638 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-security." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7b49dfec-1e51-53ae-b2cd-8b50da182ca7", "id": "CVE-2020-27216", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-27216 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-security." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:30d1392b-838e-58c9-a353-46eddaf2a892", "id": "CVE-2020-27218", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27218 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-security." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:56794905-2b1f-569a-87df-64a62124bfc7", "id": "CVE-2021-28165", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-28165 is a false positive for org.eclipse.jetty:jetty-security 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6f8672f7-9b26-5a5a-9559-f5d79f5067d2", "id": "CVE-2021-28169", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-28169 is a false positive for org.eclipse.jetty:jetty-security 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bacecdeb-e716-5a1f-80c1-3035c8c8c4a0", "id": "CVE-2021-34428", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-34428 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-security." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8538302f-1dd3-517d-92f9-622cfc741be4", "id": "CVE-2022-2047", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-2047 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-security." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ac11d1a9-fe8d-52ad-94aa-3f8caa592278", "id": "CVE-2022-2048", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-2048 is a false positive for org.eclipse.jetty:jetty-security 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6f399313-3965-59e0-8a3d-da035ccd643c", "id": "CVE-2023-26048", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26048 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-security." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:98d07698-43c2-5865-be3f-2f4afbcbe992", "id": "CVE-2023-26049", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26049 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-security." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2c756aa0-11c7-57fc-b949-6b531dcb3994", "id": "CVE-2023-36479", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-36479 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-security." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:23f9fbdb-4b83-5a17-93e5-4eb13d911dd5", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-security." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f6473eac-0b4a-5ebb-b7d4-f89291537fee", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-security." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:649a56f5-df91-5d39-b351-7a1670415d73", "id": "CVE-2024-13009", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-13009 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-security." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6002acd7-e803-51d3-a251-b2120bc92488", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-security." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b01a67f0-d07c-5b94-a0c1-324816f6c941", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-security." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5c341f03-6743-5e7e-94b1-8b0f6bc58995", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-security." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7ebb0c71-574b-569c-9748-9b7448968e5c", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-security." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2835760e-82ff-52c3-a26b-91ea603ee0f3", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-security." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:25f24d5c-c44d-5e45-b2b4-0a631210748b", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-security." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:21bb320f-9665-5329-a7f4-6fb9defac93f", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-security." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:de2ec8cc-a00b-5cf1-8bef-274a0e75ac7d", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-security." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-security@8.2.0.v20160908-tuxcare.2" } ] }