{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:e5666c62-13d3-5a42-9cf9-2a3d6d5faaeb", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-util@9.4.24.v20191120-tuxcare.1", "type": "library", "group": "org.eclipse.jetty", "name": "jetty-util", "version": "9.4.24.v20191120-tuxcare.1", "purl": "pkg:maven/org.eclipse.jetty/jetty-util@9.4.24.v20191120-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:03efb437-55a5-553b-8c4b-06434d5a4bff", "id": "CVE-2020-27216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27216 affects version 9.4.24.v20191120-tuxcare.1 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@9.4.24.v20191120-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dd744137-1fd0-5809-ba42-55a8c0d9c4d8", "id": "CVE-2020-27218", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27218 affects version 9.4.24.v20191120-tuxcare.1 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@9.4.24.v20191120-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9202abe9-c094-5383-855a-3507d0882846", "id": "CVE-2020-27223", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27223 affects version 9.4.24.v20191120-tuxcare.1 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@9.4.24.v20191120-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e490d55a-1810-5165-af92-caed84f9d392", "id": "CVE-2021-28165", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28165 affects version 9.4.24.v20191120-tuxcare.1 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@9.4.24.v20191120-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:53823005-7bfd-56f2-a8cb-c316a581058f", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 9.4.24.v20191120-tuxcare.1 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@9.4.24.v20191120-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2d7d9eb7-bb49-5f14-8816-c48420096128", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 9.4.24.v20191120-tuxcare.1 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@9.4.24.v20191120-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c154334d-e71f-5221-90f6-f70ea44a74d3", "id": "CVE-2022-2047", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-2047 affects version 9.4.24.v20191120-tuxcare.1 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@9.4.24.v20191120-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4eda8ca7-7941-56f0-ab01-d201aa21b752", "id": "CVE-2022-2048", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-2048 affects version 9.4.24.v20191120-tuxcare.1 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@9.4.24.v20191120-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d67cb614-4dcb-5a80-9f5f-65c87379044c", "id": "CVE-2023-26048", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26048 affects version 9.4.24.v20191120-tuxcare.1 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@9.4.24.v20191120-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8726df97-5393-5e95-91b1-c6ec015fd451", "id": "CVE-2023-26049", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26049 affects version 9.4.24.v20191120-tuxcare.1 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@9.4.24.v20191120-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3b2cd0f0-674d-5b7e-8a1b-1bf624e32d5a", "id": "CVE-2023-36478", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36478 affects version 9.4.24.v20191120-tuxcare.1 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@9.4.24.v20191120-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:eeab731f-7960-5071-ae5e-782cd4884acc", "id": "CVE-2023-36479", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-36479 is fixed in version 9.4.24.v20191120-tuxcare.1 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@9.4.24.v20191120-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5fab35ad-13bc-561d-b13a-2a8dc1276c40", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 9.4.24.v20191120-tuxcare.1 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@9.4.24.v20191120-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:42aad368-5c82-5024-bc36-2586d394b3cd", "id": "CVE-2023-41900", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-41900 is fixed in version 9.4.24.v20191120-tuxcare.1 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@9.4.24.v20191120-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6d75336c-4332-599c-a7fc-cf4af0ee3236", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 9.4.24.v20191120-tuxcare.1 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@9.4.24.v20191120-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:90f9a5f9-6c5a-5ff0-a858-32dd4ffee6bf", "id": "CVE-2024-13009", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-13009 affects version 9.4.24.v20191120-tuxcare.1 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@9.4.24.v20191120-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f39b9127-3398-5803-ad5d-39b05e9d31a0", "id": "CVE-2024-22201", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22201 affects version 9.4.24.v20191120-tuxcare.1 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@9.4.24.v20191120-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:da402ba3-e35f-5113-a4e4-bf5ab3038d22", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 9.4.24.v20191120-tuxcare.1 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@9.4.24.v20191120-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:72f3df48-8707-5c87-8aee-65d4cbccb0e7", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 9.4.24.v20191120-tuxcare.1 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@9.4.24.v20191120-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dcade807-cf4e-5303-bb4f-be69ea0e3931", "id": "CVE-2024-9823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-9823 is fixed in version 9.4.24.v20191120-tuxcare.1 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@9.4.24.v20191120-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3273b410-8525-560e-97f1-f91f06c648be", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 9.4.24.v20191120-tuxcare.1 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@9.4.24.v20191120-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dc17ba4e-b5a2-51ce-9352-8239cd21d2f2", "id": "CVE-2025-1948", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-1948 affects version 9.4.24.v20191120-tuxcare.1 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@9.4.24.v20191120-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b1bc49e9-598f-5a10-8e7e-068560376677", "id": "CVE-2025-5115", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-5115 affects version 9.4.24.v20191120-tuxcare.1 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@9.4.24.v20191120-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cc2c31ec-5a29-51b4-9941-2583f2c71d85", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 9.4.24.v20191120-tuxcare.1 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@9.4.24.v20191120-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@9.4.24.v20191120-tuxcare.1" } ] }