{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:359c4235-e426-5083-88fa-a6f9d7172fe1", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@8.2.0.v20160908-tuxcare.1", "type": "library", "group": "org.eclipse.jetty", "name": "jetty-servlet", "version": "8.2.0.v20160908-tuxcare.1", "purl": "pkg:maven/org.eclipse.jetty/jetty-servlet@8.2.0.v20160908-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:3d12e11d-2ac6-522d-8c12-01137fbb5844", "id": "CVE-2015-2080", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2015-2080 is a false positive for org.eclipse.jetty:jetty-servlet 8.2.0.v20160908-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ff326970-4624-546c-810e-57601de78876", "id": "CVE-2017-7656", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7656 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fd7c0737-6643-5b0c-89fd-bbd5d64e83dc", "id": "CVE-2017-7657", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7657 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e632dc01-83de-53ab-acec-337ba0cbb180", "id": "CVE-2017-7658", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7658 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fe528020-cedd-595b-8b09-c7bb54fe11d1", "id": "CVE-2017-9735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-9735 is fixed in version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:14c14e45-7927-5f44-ad71-3eb6f8a68f58", "id": "CVE-2018-12536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12536 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:67df317d-9c4c-5dd3-a33e-7f92b3d8fbf5", "id": "CVE-2018-12538", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12538 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:257a3a29-5c58-5213-ad7f-bb2bbd872638", "id": "CVE-2018-12545", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12545 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ae2c909b-3339-5eba-b399-ac92a7bd6485", "id": "CVE-2019-10241", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10241 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3b464b57-273f-54cf-b116-9a4e721e4b9d", "id": "CVE-2019-10246", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10246 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:77ace294-63b2-5dc7-97b0-1967eefa6856", "id": "CVE-2019-10247", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-10247 is fixed in version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:56f420a8-4c07-5a18-b0f3-f828a7c4c48c", "id": "CVE-2019-17638", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-17638 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b0154873-1aa5-5a90-ae25-ae4bc19fa4ea", "id": "CVE-2020-27216", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-27216 is fixed in version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7d830384-f57e-562f-b4e2-794c524de707", "id": "CVE-2020-27218", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27218 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:999ea32d-09a2-5df5-9d18-48188e124590", "id": "CVE-2021-28165", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-28165 is a false positive for org.eclipse.jetty:jetty-servlet 8.2.0.v20160908-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:248cd9d8-d4ca-56fe-a12b-3bdc7532ad7a", "id": "CVE-2021-28169", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-28169 is a false positive for org.eclipse.jetty:jetty-servlet 8.2.0.v20160908-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:55df4ab5-cfcc-561d-b646-be93bfed3263", "id": "CVE-2021-34428", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-34428 is fixed in version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f4805124-6fc6-57b4-b347-5362508b4703", "id": "CVE-2022-2047", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-2047 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d2ca0dbe-4bb0-5603-b400-35c39799a2f1", "id": "CVE-2022-2048", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-2048 is a false positive for org.eclipse.jetty:jetty-servlet 8.2.0.v20160908-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:28c39b41-7f46-57da-a4c3-79374a958de3", "id": "CVE-2023-26048", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26048 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1073cde8-d0fb-5bdf-be92-1a884c0026fa", "id": "CVE-2023-26049", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26049 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8d4d441c-578b-59dd-b662-a922f96f29c8", "id": "CVE-2023-36479", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36479 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:614c6230-7a8d-5527-9c46-9678025662a3", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ad6a5c4f-6cc1-552d-af0e-4329e9b8026d", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0e411d31-666d-5404-ad94-b6bdc373e471", "id": "CVE-2024-13009", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-13009 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:058fc186-9032-5388-8ff9-e33dde9bc4d7", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9020135e-4d8e-5e6b-a3a6-ee304cbd7e26", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0ef54e70-3ad6-5bbb-945a-aa0e8d00fa96", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:37f926fe-5932-5a66-b335-259bfacd79a2", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6395f5e8-628f-5736-8265-ca10bc0ee4f5", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3af38fac-6d9c-5fac-b9be-b54dd7c30c79", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:63335e25-95d7-5ff7-a8b0-d0f7c55e64fd", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:026e482a-1b36-5ef3-9b8e-08f8b45d2dbe", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@8.2.0.v20160908-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@8.2.0.v20160908-tuxcare.1" } ] }