{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:a45b3618-dc02-513b-a704-7d52abcc79af", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty.demos/demo-jndi-webapp@10.0.26-tuxcare.1", "type": "library", "group": "org.eclipse.jetty.demos", "name": "demo-jndi-webapp", "version": "10.0.26-tuxcare.1", "purl": "pkg:maven/org.eclipse.jetty.demos/demo-jndi-webapp@10.0.26-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:36bde742-6d01-5409-b35c-f7a8d0fc85e6", "id": "CVE-2020-25711", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-25711 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-jndi-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-jndi-webapp@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9aec61d1-fc63-52dd-a4e1-ead666ea051b", "id": "CVE-2020-27216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27216 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-jndi-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-jndi-webapp@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5ca1d8e5-7b41-5a8f-850e-1a0fe9683af8", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-jndi-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-jndi-webapp@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e89898ef-0210-50cb-b462-2b2dfbb78d8a", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-jndi-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-jndi-webapp@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8079cec3-37a1-508b-9fef-6938ae384cff", "id": "CVE-2023-36478", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36478 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-jndi-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-jndi-webapp@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4043caee-155c-50d5-8034-428203631b2d", "id": "CVE-2023-36479", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36479 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-jndi-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-jndi-webapp@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0e7cf424-f3f1-57fd-a34b-cf080e1bb29d", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-jndi-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-jndi-webapp@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:052eee4c-d5ac-5c36-b901-d82de5f46d96", "id": "CVE-2023-41900", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-41900 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-jndi-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-jndi-webapp@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b732ed98-4a77-5da9-9ac8-15496d2d0cea", "id": "CVE-2024-22201", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22201 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-jndi-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-jndi-webapp@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3b506861-41db-5f80-a4d4-31cae66f07b7", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-jndi-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-jndi-webapp@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c9f27475-d130-50b1-8ba3-18429bb39abe", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-jndi-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-jndi-webapp@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3bc7bde2-07ed-52c9-8429-d090d6d364b0", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-jndi-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-jndi-webapp@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a3deb8b7-063e-5aee-90c2-bf5c3af34acf", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-jndi-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-jndi-webapp@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4ad10c95-e1d4-5b45-8801-ed6bfe08bc45", "id": "CVE-2025-5115", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-5115 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-jndi-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-jndi-webapp@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:29558365-721d-5e26-a7f5-30c83a2a4c18", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-jndi-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-jndi-webapp@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a15d27da-2c4f-53be-ad7c-7cf5f35b9717", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-jndi-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-jndi-webapp@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:de73a078-7438-5ea1-acc5-97a52c65dd6c", "id": "CVE-2026-5795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-5795 is fixed in version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-jndi-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-jndi-webapp@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9d6caa9f-78a3-507c-aa00-f748ee1ab7b3", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.demos:demo-jndi-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-jndi-webapp@10.0.26-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty.demos/demo-jndi-webapp@10.0.26-tuxcare.1" } ] }