{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:a38430ed-639e-5ddb-a911-f9e9b1f8bdd9", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-util@8.2.0.v20160908-tuxcare.1", "type": "library", "group": "org.eclipse.jetty", "name": "jetty-util", "version": "8.2.0.v20160908-tuxcare.1", "purl": "pkg:maven/org.eclipse.jetty/jetty-util@8.2.0.v20160908-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:b71baa36-8f0b-5802-8882-a3448bf7e96e", "id": "CVE-2015-2080", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2015-2080 is a false positive for org.eclipse.jetty:jetty-util 8.2.0.v20160908-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3c16a3ea-4a5b-5469-b393-7def331c607f", "id": "CVE-2017-7656", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7656 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7dd18da3-8e41-5468-ba7e-f19fcf2bc1c0", "id": "CVE-2017-7657", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7657 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:443d1af4-4385-55c6-b4e0-36c398e4a88d", "id": "CVE-2017-7658", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7658 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d95bc1ed-0259-522c-90b3-cfbc1d049a70", "id": "CVE-2017-9735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-9735 is fixed in version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:358f770d-4561-57c1-b104-68b19ae4204f", "id": "CVE-2018-12536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12536 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:258257dc-ae8c-5cb4-847f-74eb01c7cff3", "id": "CVE-2018-12538", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12538 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f78b5075-f232-515f-9334-bd03fff6ae54", "id": "CVE-2018-12545", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12545 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2272af80-ecfa-5db6-ad5a-2620fbadb1c7", "id": "CVE-2019-10241", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10241 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d9c80c5b-0beb-5772-9608-70506ac9f949", "id": "CVE-2019-10246", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10246 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b9307c5e-e579-5c2d-bace-c1efeca24c50", "id": "CVE-2019-10247", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-10247 is fixed in version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6d70fb64-4eb7-57f1-a474-d0da27176796", "id": "CVE-2019-17638", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-17638 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:188557d2-aeb9-5b4a-8bc5-17f0da61bc0e", "id": "CVE-2020-27216", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-27216 is fixed in version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d3bbea60-2879-526e-9aad-1243427eb600", "id": "CVE-2020-27218", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27218 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4b5b9034-f3b6-506a-94b9-a8143fb1f73b", "id": "CVE-2021-28165", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-28165 is a false positive for org.eclipse.jetty:jetty-util 8.2.0.v20160908-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:75409a25-540a-56e8-9a6c-acb253a13695", "id": "CVE-2021-28169", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-28169 is a false positive for org.eclipse.jetty:jetty-util 8.2.0.v20160908-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3061bbb0-df5b-5937-851a-e70a9a7d195d", "id": "CVE-2021-34428", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-34428 is fixed in version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:16838de3-6a38-53cf-83dd-04c4cff5f689", "id": "CVE-2022-2047", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-2047 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:08fe2ac0-ee0e-516b-aafb-147fddaaae8d", "id": "CVE-2022-2048", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-2048 is a false positive for org.eclipse.jetty:jetty-util 8.2.0.v20160908-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ae040416-ad4b-5cae-83d0-26280e372247", "id": "CVE-2023-26048", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26048 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c3edec7a-e5c9-57a4-b0c7-ef38335d0f6a", "id": "CVE-2023-26049", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26049 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fc416157-74b0-5b25-93d1-99ad672006aa", "id": "CVE-2023-36479", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36479 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cd016588-77dc-5230-9b7c-9da90051c020", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:916476f4-e3be-5eba-bd24-0fe8f8463abb", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1f3e2cc1-af1b-57b5-bcf1-cbbd7f954c12", "id": "CVE-2024-13009", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-13009 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8e38e07a-f03f-52ed-9af1-6c71ddc533c2", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e4954d73-c843-5e19-b663-ec43f437260a", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4ef420de-08a6-508d-af48-ed242686422b", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:925622e2-cf5f-5f25-b627-7c86be92c562", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0bbe047a-a53f-5ba2-b42e-13c7c004f66e", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7603f0e9-5e3a-5a1f-bc62-38aaa78cd935", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ecc414b0-3128-5acb-88b3-5cda20b4853c", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@8.2.0.v20160908-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8d5607a6-6e07-546f-bc16-5b5e70190798", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 8.2.0.v20160908-tuxcare.1 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@8.2.0.v20160908-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@8.2.0.v20160908-tuxcare.1" } ] }