{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:63f85d44-5d38-582e-b3ea-a32569df5bb5", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-util-ajax@9.4.48.v20220622-tuxcare.1", "type": "library", "group": "org.eclipse.jetty", "name": "jetty-util-ajax", "version": "9.4.48.v20220622-tuxcare.1", "purl": "pkg:maven/org.eclipse.jetty/jetty-util-ajax@9.4.48.v20220622-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:c5f39b65-4c47-570e-bead-2cb4d8908907", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-util-ajax." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util-ajax@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:331f7f72-18c0-5057-9364-5132ed909313", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-util-ajax." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util-ajax@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e400278e-cc3a-5257-83df-6ceb05a74470", "id": "CVE-2023-26048", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26048 is fixed in version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-util-ajax." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util-ajax@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0df5f4c3-6d15-5212-aad7-1efaab30d0e4", "id": "CVE-2023-26049", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26049 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-util-ajax." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util-ajax@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0fdce8a7-c381-53b6-8bfa-fb69a3d0890e", "id": "CVE-2023-36478", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36478 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-util-ajax." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util-ajax@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:670f245b-4907-5c57-bb50-b0c85d6b577e", "id": "CVE-2023-36479", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36479 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-util-ajax." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util-ajax@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c3667671-a08f-50ba-ad02-5f5cbabb4ca4", "id": "CVE-2023-40167", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-40167 is fixed in version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-util-ajax." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util-ajax@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1d0e57d2-2bf4-5bd5-b90a-bc13f6e8b44c", "id": "CVE-2023-41900", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-41900 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-util-ajax." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util-ajax@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:24b17c68-ed60-5ee3-a696-7e378d28d6c4", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-util-ajax." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util-ajax@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:49cff616-3ddf-56ec-8aa2-0a7b4541face", "id": "CVE-2024-13009", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-13009 is fixed in version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-util-ajax." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util-ajax@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:26d6a77a-d1e5-5ca3-949a-19ea38a50c82", "id": "CVE-2024-22201", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22201 is fixed in version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-util-ajax." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util-ajax@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:82435018-d816-5abc-bb16-b4a1b1ce9a8e", "id": "CVE-2024-6762", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-6762 is fixed in version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-util-ajax." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util-ajax@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e7c244e8-fcf7-5298-8163-6ffeaec9cd8d", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-util-ajax." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util-ajax@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b71cacf2-7d6a-5fa8-a126-f917c3810292", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-util-ajax." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util-ajax@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:13c72faf-04ba-524a-99d2-4f10c76d58e3", "id": "CVE-2024-9823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-9823 is fixed in version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-util-ajax." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util-ajax@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ca1f533d-1d3e-5208-b6b2-a81ea8585aee", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-util-ajax." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util-ajax@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:734b2e12-6af3-571b-9afc-82d155fa7ec3", "id": "CVE-2025-5115", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-5115 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-util-ajax." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util-ajax@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1033c5d2-5208-532d-8a44-e68eef2b0b5c", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-util-ajax." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util-ajax@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3cc3f83e-ec60-5abe-a4b9-c617d53b7974", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-util-ajax." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util-ajax@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:06bb7551-70c9-5bc5-bc95-e8938b1ed56f", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-util-ajax." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util-ajax@9.4.48.v20220622-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util-ajax@9.4.48.v20220622-tuxcare.1" } ] }