{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:fee7d20a-f38d-5c04-b215-9db712e05dd2", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-xml@8.2.0.v20160908-tuxcare.2", "type": "library", "group": "org.eclipse.jetty", "name": "jetty-xml", "version": "8.2.0.v20160908-tuxcare.2", "purl": "pkg:maven/org.eclipse.jetty/jetty-xml@8.2.0.v20160908-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:1032deeb-01e9-5f1e-95d9-936689d113ae", "id": "CVE-2015-2080", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2015-2080 is a false positive for org.eclipse.jetty:jetty-xml 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-xml@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a5ec7098-e2a2-5311-92ba-a741bcae65f8", "id": "CVE-2017-7656", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7656 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-xml." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-xml@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6eed1984-b623-53b4-bff4-d0f91db80f9a", "id": "CVE-2017-7657", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7657 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-xml." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-xml@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4d45512f-9a7e-55a2-af3f-c34f1e595f07", "id": "CVE-2017-7658", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7658 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-xml." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-xml@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:dc749a12-bedd-5ab1-8b42-e5c4cced5445", "id": "CVE-2017-9735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-9735 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-xml." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-xml@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e9be5354-a4e0-5d99-bd79-7d6a878b08f6", "id": "CVE-2018-12536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12536 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-xml." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-xml@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b6ce0584-e4c2-5cb2-b407-979375d78904", "id": "CVE-2018-12538", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12538 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-xml." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-xml@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cc1f38ed-46df-5c2c-8bc8-588abdf6dca1", "id": "CVE-2018-12545", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12545 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-xml." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-xml@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:25692aea-a1d8-5cf1-803b-90a8b43c2b93", "id": "CVE-2019-10241", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10241 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-xml." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-xml@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3b0d77a5-507d-500f-9bea-d315e79f3342", "id": "CVE-2019-10246", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10246 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-xml." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-xml@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:35d88fe0-3013-56b5-a2e8-16355afdbbc1", "id": "CVE-2019-10247", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-10247 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-xml." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-xml@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cfe56224-1220-5017-92ae-fb648ab2bce8", "id": "CVE-2019-17638", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-17638 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-xml." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-xml@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0d73461d-9531-5abe-bc4c-17ff33837516", "id": "CVE-2020-27216", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-27216 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-xml." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-xml@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7e9c2d25-be7a-5cf1-99f7-b5574c9235f0", "id": "CVE-2020-27218", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27218 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-xml." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-xml@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1b3675e9-7486-5695-b59a-68f12b993077", "id": "CVE-2021-28165", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-28165 is a false positive for org.eclipse.jetty:jetty-xml 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-xml@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:792c9544-fa48-567c-8a6f-41e2c5026de4", "id": "CVE-2021-28169", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-28169 is a false positive for org.eclipse.jetty:jetty-xml 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-xml@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:634c37d2-466e-5f65-b539-eff0a3a0bd0f", "id": "CVE-2021-34428", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-34428 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-xml." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-xml@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8cc2a43d-cf3c-5532-852a-24acc527d33c", "id": "CVE-2022-2047", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-2047 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-xml." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-xml@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f2c6361a-19e2-56e8-9038-2449488ba135", "id": "CVE-2022-2048", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-2048 is a false positive for org.eclipse.jetty:jetty-xml 8.2.0.v20160908-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-xml@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:09124608-f00e-5e27-b7d5-1fa5f7712995", "id": "CVE-2023-26048", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26048 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-xml." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-xml@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d7cfdda8-a403-5900-8064-4dde9b762372", "id": "CVE-2023-26049", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26049 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-xml." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-xml@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:da2a86d0-7768-5f56-b18a-73edb5c095be", "id": "CVE-2023-36479", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-36479 is fixed in version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-xml." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-xml@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:97d07fd2-d233-58f1-ba42-83f5b2d9660a", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-xml." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-xml@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:60338164-7161-5707-a32b-9db99c3fb81e", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-xml." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-xml@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e06c667c-34c6-50d9-91af-dc35c51bdd2e", "id": "CVE-2024-13009", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-13009 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-xml." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-xml@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7a85bf30-fd55-5f66-833e-a85cb285a884", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-xml." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-xml@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a16f0eac-23ae-55b2-8848-35958741a998", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-xml." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-xml@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:52b79e1d-1321-599a-8375-cef736ed7202", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-xml." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-xml@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3695d6cf-dd06-58ee-b6e8-be21df9e3dd0", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-xml." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-xml@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f9251902-5294-5c7b-8930-022d1cca8d8b", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-xml." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-xml@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9ffd9100-9020-58c1-a8ed-c2afd9b8d4cf", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-xml." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-xml@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:993a6180-c77e-5ae2-b78d-0e321cccfa44", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-xml." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-xml@8.2.0.v20160908-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9da40014-db4b-5f4d-81b6-49ea82eafc56", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 8.2.0.v20160908-tuxcare.2 of org.eclipse.jetty:jetty-xml." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-xml@8.2.0.v20160908-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-xml@8.2.0.v20160908-tuxcare.2" } ] }