{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:5598e8c0-a6af-59b2-ac4e-018f8ef36a37", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-util-ajax@9.4.53.v20231009-tuxcare.2", "type": "library", "group": "org.eclipse.jetty", "name": "jetty-util-ajax", "version": "9.4.53.v20231009-tuxcare.2", "purl": "pkg:maven/org.eclipse.jetty/jetty-util-ajax@9.4.53.v20231009-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:692e6969-8802-556f-9cea-0d18060abc05", "id": "CVE-2020-25711", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-25711 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-util-ajax." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util-ajax@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8c6ea121-682a-58bc-bb84-dbbbc282adc1", "id": "CVE-2020-27216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27216 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-util-ajax." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util-ajax@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2fa4b076-bef5-50de-8e91-2e9171012627", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-util-ajax." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util-ajax@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9856262f-cc7d-50e3-8a58-9718bf6775a4", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-util-ajax." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util-ajax@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:529aace5-2823-56b4-82c2-6bc19aeb9880", "id": "CVE-2023-36478", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36478 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-util-ajax." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util-ajax@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6480fec5-fdd4-54dc-90bf-94151195fc7a", "id": "CVE-2023-36479", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36479 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-util-ajax." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util-ajax@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:32b8c4c2-b959-5fbb-ae97-aca88356f922", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-util-ajax." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util-ajax@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:61d3bc09-db50-5f58-8319-89c681545811", "id": "CVE-2023-41900", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-41900 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-util-ajax." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util-ajax@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c5c6dc3b-0e01-5ec4-be1a-bdf9153acca4", "id": "CVE-2024-13009", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-13009 is fixed in version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-util-ajax." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util-ajax@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4b8e002e-2ae7-5831-9f80-ae16b3eb8542", "id": "CVE-2024-22201", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22201 is fixed in version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-util-ajax." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util-ajax@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:faff7e2f-6b83-5726-b6f8-68af3423f528", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-util-ajax." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util-ajax@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:59c8f269-f528-524f-a0b1-67e59f609d7b", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-util-ajax." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util-ajax@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:50916b70-8ff8-53c9-8fed-1fcac1722dbc", "id": "CVE-2024-9823", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-9823 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-util-ajax." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util-ajax@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:efc307ca-46c3-5bb7-9863-f78a510a0128", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-util-ajax." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util-ajax@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:707117d7-7350-5ebd-9020-b1f2990ad097", "id": "CVE-2025-1948", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-1948 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-util-ajax." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util-ajax@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b134cbe0-04ae-5d57-aaf3-f6b9a46cc3c2", "id": "CVE-2025-5115", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-5115 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-util-ajax." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util-ajax@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3d197e6a-9f20-52a4-ace6-6c75f2d29a12", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-util-ajax." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util-ajax@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8bd3a61e-f0ba-5556-8e4c-afe799cfe40a", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-util-ajax." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util-ajax@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0592e4c1-6885-56cf-ae26-d556a114b746", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-util-ajax." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util-ajax@9.4.53.v20231009-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util-ajax@9.4.53.v20231009-tuxcare.2" } ] }