{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:38f46d56-cf7a-5437-9762-db3d50662ddc", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@8.2.0.v20160908-tuxcare.2", "type": "library", "group": "org.eclipse.jetty", "name": "jetty-webapp", "version": "8.2.0.v20160908-tuxcare.2", "purl": "pkg:maven/org.eclipse.jetty/jetty-webapp@8.2.0.v20160908-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:f1e61216-812d-54ab-8ce8-e3e134a228ba", "id": "CVE-2015-2080", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2015-2080 is a false positive for org.eclipse.jetty:jetty-webapp 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c8a03005-e0b1-52d3-ad50-5d67604e8760", "id": "CVE-2017-7656", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7656 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:642cc210-a5f2-5b8e-9407-ce2fdb7e24b7", "id": "CVE-2017-7657", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7657 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7969d6da-6a65-5daa-88c7-bf3c57c169f0", "id": "CVE-2017-7658", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7658 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:92532d80-7913-5ffd-9686-86e2aae918e4", "id": "CVE-2017-9735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-9735 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4417fc0a-9073-5662-848f-c8a7bca6670e", "id": "CVE-2018-12536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12536 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5df5825c-653a-5b23-9a50-5199b8077d19", "id": "CVE-2018-12538", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12538 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ca624b6c-7f85-5628-a753-0428e194a9e8", "id": "CVE-2018-12545", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12545 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ba905db9-191f-50c5-83fc-f0b1ffe6bb3f", "id": "CVE-2019-10241", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10241 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1b837043-82d3-5e1f-bbde-396b43c7eec9", "id": "CVE-2019-10246", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10246 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6a351b30-81d7-5a30-beb2-fe75d3b75d24", "id": "CVE-2019-10247", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-10247 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e05dd22e-744f-5c83-b2b8-17b4e0ca7035", "id": "CVE-2019-17638", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-17638 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a9d64221-e794-53c3-83ec-bf0aa9c1528a", "id": "CVE-2020-27216", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-27216 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8888452d-33d9-5ab8-9026-da6e19931121", "id": "CVE-2020-27218", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27218 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:228170ab-efb9-56c6-8c13-4f8d666de1f2", "id": "CVE-2021-28165", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-28165 is a false positive for org.eclipse.jetty:jetty-webapp 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:05f8398e-6e42-5e95-9122-49e02de6840f", "id": "CVE-2021-28169", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-28169 is a false positive for org.eclipse.jetty:jetty-webapp 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:54961b6f-281d-5946-969f-142f6b822344", "id": "CVE-2021-34428", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-34428 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:46db7589-7a26-544a-95c7-1ad59d8c87b9", "id": "CVE-2022-2047", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-2047 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:944ec2c3-85ca-53c4-929b-7f3baf12285e", "id": "CVE-2022-2048", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-2048 is a false positive for org.eclipse.jetty:jetty-webapp 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ec38fd01-8b78-5141-bc09-c56af98a2252", "id": "CVE-2023-26048", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26048 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0038a884-de90-572d-9f6b-7fcd2589c5a8", "id": "CVE-2023-26049", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26049 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:15a8fd2c-5638-555c-b888-8421402fa0b2", "id": "CVE-2023-36479", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-36479 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9d2b424f-7d43-5a61-8548-e2ec540dcf02", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:439af118-edbf-57d1-9f3d-21026cfc0f8e", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3e2c055b-76f5-53d2-984c-99d3a8acc957", "id": "CVE-2024-13009", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-13009 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:91f2448e-0f34-5cb8-89ba-0a9f3fc348a7", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5146d89d-0ee1-57dd-b1a2-1703cc986069", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e1e1a005-31d1-5b1b-9422-407491c31bf3", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d50eb443-89e3-54c7-a34c-18cb0eac4254", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c3f88c64-965c-5978-a43a-6dbd4f149ca8", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7d489624-cb49-599f-b5ce-45a6dc49c7a8", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e152732a-e823-5c0e-8e29-fe8c4532581e", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ef1675aa-bf07-5b13-b0cf-565064659f22", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@8.2.0.v20160908-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@8.2.0.v20160908-tuxcare.2" } ] }