{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:60c94855-6b79-5c0f-8830-fe522813c9a9", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-websocket@8.2.0.v20160908-tuxcare.2", "type": "library", "group": "org.eclipse.jetty", "name": "jetty-websocket", "version": "8.2.0.v20160908-tuxcare.2", "purl": "pkg:maven/org.eclipse.jetty/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:e732c0b4-7411-5e4d-8f8e-30a5e4d393fe", "id": "CVE-2015-2080", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2015-2080 is a false positive for org.eclipse.jetty:jetty-websocket 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e5f53fd8-8749-53f0-9729-9ff9bb95c76e", "id": "CVE-2017-7656", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7656 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-websocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ed41e9a8-7e06-5512-9fa1-cdfdd8d84bf1", "id": "CVE-2017-7657", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7657 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-websocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c90bcb68-68be-56d5-8af8-0a899b55f143", "id": "CVE-2017-7658", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7658 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-websocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4b680e3e-7a77-55f9-bba2-10dcf3d99460", "id": "CVE-2017-9735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-9735 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-websocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d9efa675-0427-5701-ad1d-612a8012b8f5", "id": "CVE-2018-12536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12536 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-websocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b93c9c05-d784-5946-b5c2-dbd98e8b5067", "id": "CVE-2018-12538", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12538 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-websocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8c643322-7940-5711-800d-0b07e96a5d8c", "id": "CVE-2018-12545", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12545 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-websocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e52693f1-de5c-5fae-bb47-430af04bed3d", "id": "CVE-2019-10241", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10241 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-websocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3a19de0e-4300-52b7-8a08-d0429fc9ae42", "id": "CVE-2019-10246", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10246 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-websocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4092f4d5-4d6c-53cd-8604-cc9ec9b0c18c", "id": "CVE-2019-10247", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-10247 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-websocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:854ed761-bf2d-5410-b054-dcb33ac18af3", "id": "CVE-2019-17638", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-17638 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-websocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a3f30e42-e987-5eea-88b6-88ab489c9fb3", "id": "CVE-2020-27216", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-27216 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-websocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4daa3e42-b7b7-5322-ac07-b8c3fada8891", "id": "CVE-2020-27218", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27218 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-websocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e53e29be-92f0-589a-a4a3-f81a1780bc95", "id": "CVE-2021-28165", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-28165 is a false positive for org.eclipse.jetty:jetty-websocket 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e30b7786-69d0-5b3c-a2cc-e4da52b8da99", "id": "CVE-2021-28169", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-28169 is a false positive for org.eclipse.jetty:jetty-websocket 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7cbf27d7-1dfe-5585-9a44-53d2167aa7a3", "id": "CVE-2021-34428", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-34428 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-websocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f22cb83d-c404-5263-8067-8b01fd027c73", "id": "CVE-2022-2047", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-2047 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-websocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2596e969-9a6f-544b-899f-2258f21a9b98", "id": "CVE-2022-2048", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-2048 is a false positive for org.eclipse.jetty:jetty-websocket 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a663c5c8-fea5-5d40-8571-f185a0b70e6c", "id": "CVE-2023-26048", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26048 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-websocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6a396c70-fa91-5a3d-996e-c5a1e05c66ed", "id": "CVE-2023-26049", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26049 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-websocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a85b5030-7048-524a-a10d-6cdd3b02397a", "id": "CVE-2023-36479", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-36479 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-websocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bbf348ec-44c7-5c3d-9604-7d1e315729fa", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-websocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8d0d63e4-911d-5053-8833-061208608adb", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-websocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4390d180-aa16-5696-8d29-0be91dc9048a", "id": "CVE-2024-13009", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-13009 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-websocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:84490526-dc2d-5473-a846-e87301e7237b", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-websocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:03e395aa-ab22-5008-ab33-b411069f7236", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-websocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:802f322b-a602-505f-a693-1ac4e7a1b6d2", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-websocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ce36ab2d-e6e2-57c3-9b03-7e27832cc2f4", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-websocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:87eabbec-2ccc-51b0-9577-6875df311b58", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-websocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9ae1fdeb-238a-57e4-af03-61ee80e1436f", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-websocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7087ea91-b9b1-516e-bce1-78bc780dd25a", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-websocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:789ddc0e-ec63-5fe8-b3c4-d05ca3267498", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-websocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-websocket@8.2.0.v20160908-tuxcare.2" } ] }