{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:f28525b4-5558-5f86-8d79-3fe5fd4490fd", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-util@9.4.53.v20231009-tuxcare.2", "type": "library", "group": "org.eclipse.jetty", "name": "jetty-util", "version": "9.4.53.v20231009-tuxcare.2", "purl": "pkg:maven/org.eclipse.jetty/jetty-util@9.4.53.v20231009-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:9b0a144b-eb37-594e-ac72-20f876ee96b6", "id": "CVE-2020-25711", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-25711 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f840fe0d-300b-54fa-88f7-1d84e01b25b8", "id": "CVE-2020-27216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27216 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d8004165-4629-5f50-b67f-858be88a8252", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0575ab43-8d6f-5e25-bb2a-dc66f6dbc574", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7b6f6a69-9f2e-538d-921d-932ef6e4bd6f", "id": "CVE-2023-36478", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36478 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:35a319bb-b9ba-58a3-a38f-a9f3351a56bc", "id": "CVE-2023-36479", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36479 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cfe85639-9174-527f-ab5d-12e99b2912c0", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6b322e7d-17f3-5212-b4e4-7f3cc2ab7dce", "id": "CVE-2023-41900", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-41900 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:708070bb-f415-5558-b1ce-b0228e2f0567", "id": "CVE-2024-13009", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-13009 is fixed in version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:585aafca-c301-5d13-a3eb-8962f3c21e65", "id": "CVE-2024-22201", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22201 is fixed in version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f7f61fb8-8d59-59ab-acb4-e0f8d73b6540", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a0b6a63a-b5f7-568d-b4d0-6d4a91a38b05", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c43eb980-53f6-5342-ac4b-46b6c81f517f", "id": "CVE-2024-9823", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-9823 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8a44b6f5-9d2e-526d-b703-370225ae73e4", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:76a0744b-714f-5e8a-8c79-2d56c273cabb", "id": "CVE-2025-1948", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-1948 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:655ee299-fb0c-5180-bc1c-db81c545e749", "id": "CVE-2025-5115", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-5115 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c08e1913-b661-5cec-a3f6-17baf48fef43", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:78e6fde4-8027-5181-93d3-96cf3a563e2b", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@9.4.53.v20231009-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8f0c4991-34bf-5d53-aba8-6d73f1de69c7", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 9.4.53.v20231009-tuxcare.2 of org.eclipse.jetty:jetty-util." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@9.4.53.v20231009-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-util@9.4.53.v20231009-tuxcare.2" } ] }