{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:9157d0d5-3179-53b2-840c-0959299832fe", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-servlets@8.2.0.v20160908-tuxcare.1", "type": "library", "group": "org.eclipse.jetty", "name": "jetty-servlets", "version": "8.2.0.v20160908-tuxcare.1", "purl": "pkg:maven/org.eclipse.jetty/jetty-servlets@8.2.0.v20160908-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:e4debfcd-be75-51ec-926a-a39637287cf5", "id": "CVE-2015-2080", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2015-2080 is a false positive for org.eclipse.jetty:jetty-servlets 8.2.0.v20160908-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlets@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fa4cec04-d880-5b5b-90c3-5de02131fb5c", "id": "CVE-2017-7656", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7656 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-servlets." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlets@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d92fc22f-de20-5584-9d68-410f8c394fef", "id": "CVE-2017-7657", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7657 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-servlets." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlets@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:14bf526b-eb2f-5016-aad0-1b7931d11d1a", "id": "CVE-2017-7658", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7658 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-servlets." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlets@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:03a602e7-934c-53f6-9860-a1ea08ceea5e", "id": "CVE-2017-9735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-9735 is fixed in version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-servlets." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlets@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7998af2c-d0ea-5d1f-9d57-28ecb9cb6dd9", "id": "CVE-2018-12536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12536 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-servlets." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlets@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e3cb0890-4c43-57bc-9911-742d047ef88e", "id": "CVE-2018-12538", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12538 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-servlets." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlets@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:652c556d-05cf-5b50-8cb5-ed42dcb93d8e", "id": "CVE-2018-12545", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12545 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-servlets." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlets@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:de0d535e-8166-540e-8720-c9487115697b", "id": "CVE-2019-10241", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10241 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-servlets." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlets@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0a16224d-a030-5023-8524-ab914a0b091a", "id": "CVE-2019-10246", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10246 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-servlets." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlets@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1225496b-fcf4-515f-8cf9-417560141d15", "id": "CVE-2019-10247", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-10247 is fixed in version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-servlets." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlets@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f8f862c8-3982-5678-aeb5-ca2817ffa986", "id": "CVE-2019-17638", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-17638 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-servlets." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlets@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4b1a29fa-3de1-578f-8297-fd3a7dd398e5", "id": "CVE-2020-27216", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-27216 is fixed in version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-servlets." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlets@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:648f2ec9-6106-5edd-a907-499d0e445c8e", "id": "CVE-2020-27218", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27218 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-servlets." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlets@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ecb8bca5-ee07-5469-a9ef-4c1a8cfe4e23", "id": "CVE-2021-28165", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-28165 is a false positive for org.eclipse.jetty:jetty-servlets 8.2.0.v20160908-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlets@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a769ab5b-a8ad-52a9-8fda-d888a27b11a7", "id": "CVE-2021-28169", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-28169 is a false positive for org.eclipse.jetty:jetty-servlets 8.2.0.v20160908-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlets@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4e8efbe0-cadc-5809-8d05-bf13eaee1571", "id": "CVE-2021-34428", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-34428 is fixed in version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-servlets." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlets@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2eac5214-0749-5fb1-93ff-7deb4972fff8", "id": "CVE-2022-2047", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-2047 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-servlets." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlets@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8617a41d-caa1-51ce-915d-c93cb51fef1c", "id": "CVE-2022-2048", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-2048 is a false positive for org.eclipse.jetty:jetty-servlets 8.2.0.v20160908-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlets@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:346c2704-e4ca-542b-8df4-db95fac31b66", "id": "CVE-2023-26048", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26048 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-servlets." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlets@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:64ef7993-2478-5800-a4d4-6cb02f1076eb", "id": "CVE-2023-26049", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26049 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-servlets." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlets@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ab96e459-88a0-5876-9ace-0abf79f23b81", "id": "CVE-2023-36479", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36479 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-servlets." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlets@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:23147ed6-f7f2-5098-b494-da1092cabe55", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-servlets." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlets@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2b5bbf2f-512a-5b22-b602-19b4b12c7e84", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-servlets." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlets@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1ae5c075-8bad-5672-a6eb-a87fc4cdf319", "id": "CVE-2024-13009", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-13009 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-servlets." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlets@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:70303cd6-2f97-5cef-a273-aa61cde21956", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-servlets." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlets@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:27f5ca50-9a0c-525c-8a53-254bd1b8c514", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-servlets." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlets@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a2205da9-1879-550e-85ed-f1fb8daf6ed1", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-servlets." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlets@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4a2346ba-8014-53f7-a8e0-410d84ea8c79", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-servlets." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlets@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a9c8d3a1-952d-5b56-96b3-e10214af2022", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-servlets." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlets@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4a739826-c3fb-59f0-9c00-58f6fc9ea89e", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-servlets." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlets@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c55832bd-e532-561d-9818-8c67eaf8fbb3", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-servlets." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlets@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cfb8ccd8-1182-55bf-9835-02db6015b0ce", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-servlets." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlets@8.2.0.v20160908-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlets@8.2.0.v20160908-tuxcare.1" } ] }