{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:661c9c75-f6a9-5db1-b708-1fcba0d90fad", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty.demos/demo-jetty-webapp@10.0.26-tuxcare.1", "type": "library", "group": "org.eclipse.jetty.demos", "name": "demo-jetty-webapp", "version": "10.0.26-tuxcare.1", "purl": "pkg:maven/org.eclipse.jetty.demos/demo-jetty-webapp@10.0.26-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:e4b8e484-e49b-52c2-b08c-540c2d8dbaac", "id": "CVE-2020-25711", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-25711 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-jetty-webapp@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7f35d247-c2f3-550c-afba-40487e2e6352", "id": "CVE-2020-27216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27216 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-jetty-webapp@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:776fec1b-ba79-5095-b92f-158d3c5ce29c", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-jetty-webapp@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bb48ba00-4fd4-5908-957c-4c4c018c6c69", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-jetty-webapp@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2395b58c-5663-52b6-bf8a-9061bef66d37", "id": "CVE-2023-36478", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36478 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-jetty-webapp@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0237d10d-a889-5371-aa44-9c56a3023c0c", "id": "CVE-2023-36479", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36479 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-jetty-webapp@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:160decf2-003c-590a-987c-1addd67bf842", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-jetty-webapp@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0741fed9-6a01-509d-9656-1e2327ae1235", "id": "CVE-2023-41900", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-41900 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-jetty-webapp@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bf2a04b4-a414-5386-89ae-bf5472f3653e", "id": "CVE-2024-22201", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22201 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-jetty-webapp@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2b96b94c-abe5-5c49-bda8-6bca69584b19", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-jetty-webapp@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e90685e4-4435-569e-a513-2fc28f3a3a31", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-jetty-webapp@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4a7608ff-c9d4-510d-8ed9-e8930e5a64a6", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-jetty-webapp@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:eeb8bdd2-f43b-5293-9da4-ed655816fb5e", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-jetty-webapp@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ed67fe0b-71d0-5605-a6d0-29b917dc28aa", "id": "CVE-2025-5115", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-5115 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-jetty-webapp@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7193690b-d14f-5f36-b1ae-777e0e005f8b", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-jetty-webapp@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4ed00a2b-77ec-5b0e-af99-99b80288a16d", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-jetty-webapp@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d08884a2-5519-510f-b185-0d03ebe7e78d", "id": "CVE-2026-5795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-5795 is fixed in version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-jetty-webapp@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b515909a-855c-5e3b-bb66-4416c2a57318", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-jetty-webapp@10.0.26-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-jetty-webapp@10.0.26-tuxcare.1" } ] }