{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:c983ba83-b638-570c-9236-1d29a0b35fb4", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty.demos/demo-async-rest-webapp@10.0.26-tuxcare.1", "type": "library", "group": "org.eclipse.jetty.demos", "name": "demo-async-rest-webapp", "version": "10.0.26-tuxcare.1", "purl": "pkg:maven/org.eclipse.jetty.demos/demo-async-rest-webapp@10.0.26-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:d0894ee8-77fb-5bb6-b20a-88eb78c6f2fb", "id": "CVE-2020-25711", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-25711 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-async-rest-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-async-rest-webapp@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5c86804e-14fa-53bb-bf52-5f861ffaa51c", "id": "CVE-2020-27216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27216 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-async-rest-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-async-rest-webapp@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e8b9e9ed-0375-55d7-9166-bc761ab5bff4", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-async-rest-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-async-rest-webapp@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d0c9338a-9353-523f-af6a-758b2d70d6a6", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-async-rest-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-async-rest-webapp@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1d8be639-57e5-5a1e-af0c-16c0170e080d", "id": "CVE-2023-36478", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36478 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-async-rest-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-async-rest-webapp@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5f1fff88-88a2-5fa6-bc0b-0b8c16484e4e", "id": "CVE-2023-36479", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36479 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-async-rest-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-async-rest-webapp@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:37810bc0-8069-50be-8b8f-5ac8dcc89e23", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-async-rest-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-async-rest-webapp@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:63f64979-dfc7-5d56-ac0b-ad1cec5788fa", "id": "CVE-2023-41900", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-41900 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-async-rest-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-async-rest-webapp@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d44e1198-cbda-5bf3-88f9-8ff8c37a48ba", "id": "CVE-2024-22201", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22201 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-async-rest-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-async-rest-webapp@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b433769f-00ba-519c-a109-f5c8b76d4309", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-async-rest-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-async-rest-webapp@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:103d259e-221b-55bc-8c06-85895231828c", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-async-rest-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-async-rest-webapp@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7fe42b64-50f2-56d4-ad41-0d01aa0eac11", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-async-rest-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-async-rest-webapp@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:63c62dcc-9256-54c8-922c-4051084be313", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-async-rest-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-async-rest-webapp@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2ac89a3f-7e6c-5773-82cc-f44663998d4c", "id": "CVE-2025-5115", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-5115 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-async-rest-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-async-rest-webapp@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:743b3a1d-3ffc-5f1b-b609-12b137de52a1", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-async-rest-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-async-rest-webapp@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f7c01865-91be-5327-8445-02a2dc972bac", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-async-rest-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-async-rest-webapp@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:af39fcf0-d472-52e0-8885-d348e98fdb67", "id": "CVE-2026-5795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-5795 is fixed in version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-async-rest-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-async-rest-webapp@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ba9446dd-1589-51ca-9f85-1e11182c9bb3", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-async-rest-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-async-rest-webapp@10.0.26-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-async-rest-webapp@10.0.26-tuxcare.1" } ] }