{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:af197037-78c7-52a1-b0ea-20546cf9bc55", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-client@9.4.48.v20220622-tuxcare.2", "type": "library", "group": "org.eclipse.jetty.fcgi", "name": "fcgi-client", "version": "9.4.48.v20220622-tuxcare.2", "purl": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-client@9.4.48.v20220622-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:9c061ace-cb04-5cbc-b07d-4f9ae30bf1d3", "id": "CVE-2020-27216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27216 affects version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty.fcgi:fcgi-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-client@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4028186a-eb3f-52fc-8982-7461e3131b37", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty.fcgi:fcgi-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-client@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d4a1ef59-4990-553e-a366-55acd86ba6e9", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty.fcgi:fcgi-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-client@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b2ff7269-9338-5ea1-a389-18ac6f89d792", "id": "CVE-2023-26048", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26048 is fixed in version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty.fcgi:fcgi-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-client@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:46e12db8-0083-56c1-84a1-d9ea7bd5ae1f", "id": "CVE-2023-26049", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26049 is fixed in version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty.fcgi:fcgi-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-client@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:40e01358-a5fc-5fab-9460-7e1aa0b8dc93", "id": "CVE-2023-36478", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36478 affects version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty.fcgi:fcgi-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-client@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:32adb245-e4b2-5075-8bb2-4977b26b249c", "id": "CVE-2023-36479", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-36479 is fixed in version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty.fcgi:fcgi-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-client@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:53305973-b3b7-55c2-b291-fe5f676190f4", "id": "CVE-2023-40167", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-40167 is fixed in version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty.fcgi:fcgi-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-client@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d3345f08-2a96-54ff-a1ab-6c53f0601cc2", "id": "CVE-2023-41900", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-41900 is fixed in version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty.fcgi:fcgi-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-client@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f0d8afa1-c7dd-5a40-86ba-b367715bbafc", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty.fcgi:fcgi-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-client@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7abd5080-5f29-5523-910c-bda6ba004ff3", "id": "CVE-2024-13009", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-13009 is fixed in version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty.fcgi:fcgi-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-client@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9a8297b3-35b2-5c65-8176-4f15fbd60592", "id": "CVE-2024-22201", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22201 is fixed in version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty.fcgi:fcgi-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-client@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e49e2e8f-774e-5bf0-a8a7-e54dbe45b0f6", "id": "CVE-2024-6762", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-6762 is fixed in version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty.fcgi:fcgi-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-client@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9414c09d-a9db-55ed-88c0-ae915f05f314", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty.fcgi:fcgi-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-client@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7c7a9872-14b3-5c79-8780-61ab9cc7e90e", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty.fcgi:fcgi-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-client@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:56e883f4-ca10-5484-a2a4-5375bb08da34", "id": "CVE-2024-9823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-9823 is fixed in version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty.fcgi:fcgi-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-client@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ad90ba45-c5ad-5894-bba0-827a6acc2496", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty.fcgi:fcgi-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-client@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:95b459df-02db-5bbf-8437-9afe9d5af2cc", "id": "CVE-2025-5115", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-5115 is fixed in version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty.fcgi:fcgi-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-client@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6b47a8c0-539b-543d-8a52-f550fb214ea0", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty.fcgi:fcgi-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-client@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:72d8bd40-c73e-52f8-a14d-2f2438f08083", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty.fcgi:fcgi-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-client@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:54b22e67-a6a1-5c12-8945-045bff024379", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "resolved", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh is fixed in version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty.fcgi:fcgi-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-client@9.4.48.v20220622-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-client@9.4.48.v20220622-tuxcare.2" } ] }