{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:e345d315-fb4b-5f6b-8e21-055cb1b73f5b", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty.demos/demo-async-rest-server@10.0.26-tuxcare.1", "type": "library", "group": "org.eclipse.jetty.demos", "name": "demo-async-rest-server", "version": "10.0.26-tuxcare.1", "purl": "pkg:maven/org.eclipse.jetty.demos/demo-async-rest-server@10.0.26-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:8495ccb1-4bbc-5a50-9ac1-3669304dc270", "id": "CVE-2020-25711", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-25711 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-async-rest-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-async-rest-server@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:35e078e2-6060-51f4-a496-7bc8d6ad8847", "id": "CVE-2020-27216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27216 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-async-rest-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-async-rest-server@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9971221e-341d-52ad-8dbe-cd90d3a9d809", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-async-rest-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-async-rest-server@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:642207c6-c601-554d-9909-32e98f7f07bf", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-async-rest-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-async-rest-server@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b8a1ca5a-8ad8-5e7c-a07d-f8f66b0ecc44", "id": "CVE-2023-36478", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36478 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-async-rest-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-async-rest-server@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6df8d32f-20a6-55ac-b0b4-5f4743c925df", "id": "CVE-2023-36479", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36479 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-async-rest-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-async-rest-server@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:046c8ebb-e5d9-53df-a082-ed0e4be94b40", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-async-rest-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-async-rest-server@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8f805444-d944-580f-b143-ec5523af7c18", "id": "CVE-2023-41900", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-41900 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-async-rest-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-async-rest-server@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8ff25ecc-b179-5b4e-bfdc-36d68055b577", "id": "CVE-2024-22201", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22201 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-async-rest-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-async-rest-server@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ffb3ae76-0fb8-5883-a162-e8f781339eb0", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-async-rest-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-async-rest-server@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d2da62ff-2b1b-5f5e-a73e-3b11fff87ad4", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-async-rest-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-async-rest-server@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6ceaa6f7-21f0-5a63-ad09-599851b37584", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-async-rest-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-async-rest-server@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ec0d4ab5-f50f-5ebc-bf27-2122303e0cc0", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-async-rest-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-async-rest-server@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:265c85fd-4466-5ae8-8f46-91c79c45554c", "id": "CVE-2025-5115", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-5115 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-async-rest-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-async-rest-server@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:42d651d3-e8f7-5d83-b3da-43bf18b5a3ab", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-async-rest-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-async-rest-server@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1e511f34-b691-5fa8-81c1-71b7619b9724", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-async-rest-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-async-rest-server@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7b832a23-caad-5b3b-914c-59eeae9d2f6a", "id": "CVE-2026-5795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-5795 is fixed in version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-async-rest-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-async-rest-server@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cea9095e-5fcb-57d8-8d57-ba8276f79618", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-async-rest-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-async-rest-server@10.0.26-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-async-rest-server@10.0.26-tuxcare.1" } ] }