{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:5c73e095-8a44-5099-990f-544ad511b58f", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-server@8.2.0.v20160908-tuxcare.1", "type": "library", "group": "org.eclipse.jetty", "name": "jetty-server", "version": "8.2.0.v20160908-tuxcare.1", "purl": "pkg:maven/org.eclipse.jetty/jetty-server@8.2.0.v20160908-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:6f2873dd-eae7-5ef5-bffe-1dc081108d13", "id": "CVE-2015-2080", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2015-2080 is a false positive for org.eclipse.jetty:jetty-server 8.2.0.v20160908-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-server@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c6c46a1f-912c-5a3b-87e0-d4021fcd329a", "id": "CVE-2017-7656", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7656 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-server@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b3fdedf0-744a-573d-b139-4aed68672159", "id": "CVE-2017-7657", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7657 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-server@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1663578f-9566-5c7a-bbd4-0084f451c644", "id": "CVE-2017-7658", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7658 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-server@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3c6fdf40-05b5-5e3e-87aa-7659293ed4de", "id": "CVE-2017-9735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-9735 is fixed in version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-server@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bd3ab696-1742-5810-82f1-a06120f8665c", "id": "CVE-2018-12536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12536 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-server@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:370136bc-ff18-5842-92ea-0db54d764863", "id": "CVE-2018-12538", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12538 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-server@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8f50dbb8-b183-58ca-8362-a57b8d089e51", "id": "CVE-2018-12545", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12545 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-server@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:323e3f67-6055-5d71-a108-0346034dbea6", "id": "CVE-2019-10241", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10241 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-server@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a7864e88-383d-5269-ae18-4481826ab051", "id": "CVE-2019-10246", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10246 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-server@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1539df38-9828-5542-b579-9943fb8b6ed5", "id": "CVE-2019-10247", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-10247 is fixed in version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-server@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:08a19e44-7000-51e0-99d6-448ae0376404", "id": "CVE-2019-17638", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-17638 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-server@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:92b440bf-a335-5465-8e18-3a31783bca4f", "id": "CVE-2020-27216", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-27216 is fixed in version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-server@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9401faba-3d3b-56e7-95ad-d0e33bba2067", "id": "CVE-2020-27218", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27218 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-server@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:37e82a50-ef9d-5673-8423-087e6447816f", "id": "CVE-2021-28165", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-28165 is a false positive for org.eclipse.jetty:jetty-server 8.2.0.v20160908-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-server@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:47e401f2-1cda-516b-806b-4d77871f9f93", "id": "CVE-2021-28169", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-28169 is a false positive for org.eclipse.jetty:jetty-server 8.2.0.v20160908-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-server@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3b3d4781-ad5a-53c8-b5bd-d821ca77a4f5", "id": "CVE-2021-34428", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-34428 is fixed in version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-server@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5b9ae7d2-2a95-5774-a91d-fd498831afb4", "id": "CVE-2022-2047", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-2047 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-server@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6248512b-c6f5-5b72-adf1-5da38949976b", "id": "CVE-2022-2048", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-2048 is a false positive for org.eclipse.jetty:jetty-server 8.2.0.v20160908-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-server@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:500db535-80a7-5366-9d9a-7fa05b8d459a", "id": "CVE-2023-26048", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26048 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-server@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:67c3efc8-3abb-5be8-adb9-d997e9dce52c", "id": "CVE-2023-26049", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26049 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-server@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:498c7509-b263-5720-b856-dd9eff070f5c", "id": "CVE-2023-36479", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36479 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-server@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:548451bd-d8d9-54d7-92e9-54c5102d0840", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-server@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f8d3439b-9b45-5859-a782-e16042c2e0d9", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-server@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1709ffcb-9cd1-515c-b2de-8d5f68f7ebfe", "id": "CVE-2024-13009", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-13009 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-server@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fd458994-e75d-559b-9058-2cbc5e88ac7b", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-server@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fece25a6-3b92-5291-99e1-2704d5d6397b", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-server@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d14d1353-5823-56f1-8b89-66571aee356f", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-server@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0dbf1ea9-b2cb-5417-8dc9-e5f9e0382239", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-server@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:491477f8-5576-5a33-9669-2bf682383711", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-server@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f5db0d29-ccbf-52aa-892d-e406aec759e5", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-server@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ad5b6bf1-4171-5098-83ee-a4c69b7c7ea0", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-server@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7fcefea0-39dd-5b3c-a934-33f1b2badb55", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-server@8.2.0.v20160908-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-server@8.2.0.v20160908-tuxcare.1" } ] }