{
  "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json",
  "bomFormat": "CycloneDX",
  "specVersion": "1.6",
  "serialNumber": "urn:uuid:fef24f34-e7fe-58a3-9e18-23b049b76f56",
  "version": 1,
  "metadata": {
    "tools": [
      {
        "name": "tuxcare-vex-generator",
        "version": "1.0.0"
      }
    ]
  },
  "components": [
    {
      "bom-ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-server@11.0.19-tuxcare.2",
      "type": "library",
      "group": "org.eclipse.jetty.fcgi",
      "name": "fcgi-server",
      "version": "11.0.19-tuxcare.2",
      "purl": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-server@11.0.19-tuxcare.2"
    }
  ],
  "vulnerabilities": [
    {
      "bom-ref": "urn:uuid:1be268bb-7536-5547-b560-a0fb391bdfa9",
      "id": "CVE-2023-36479",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2023-36479 affects version 11.0.19-tuxcare.2 of org.eclipse.jetty.fcgi:fcgi-server."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-server@11.0.19-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:951a032c-de37-5c3b-87d5-6188a537feb3",
      "id": "CVE-2024-22201",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2024-22201 is fixed in version 11.0.19-tuxcare.2 of org.eclipse.jetty.fcgi:fcgi-server."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-server@11.0.19-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:fb98aa46-4773-5909-8bdb-e36b41a29584",
      "id": "CVE-2024-6762",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2024-6762 affects version 11.0.19-tuxcare.2 of org.eclipse.jetty.fcgi:fcgi-server."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-server@11.0.19-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:b54804db-825c-52cf-adb1-f982cdfa2d2c",
      "id": "CVE-2024-6763",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2024-6763 affects version 11.0.19-tuxcare.2 of org.eclipse.jetty.fcgi:fcgi-server."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-server@11.0.19-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:136ea943-558f-5df0-bf2c-160f072454ba",
      "id": "CVE-2024-8184",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2024-8184 affects version 11.0.19-tuxcare.2 of org.eclipse.jetty.fcgi:fcgi-server."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-server@11.0.19-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:87cc1718-2af8-5899-99d8-8de729ea41b1",
      "id": "CVE-2025-11143",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-11143 affects version 11.0.19-tuxcare.2 of org.eclipse.jetty.fcgi:fcgi-server."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-server@11.0.19-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:1756b70e-0911-5970-a982-303ef2f88f5d",
      "id": "CVE-2025-5115",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-5115 affects version 11.0.19-tuxcare.2 of org.eclipse.jetty.fcgi:fcgi-server."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-server@11.0.19-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:81a32bd5-9570-596a-a3de-53a8ff40e815",
      "id": "CVE-2026-1605",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-1605 affects version 11.0.19-tuxcare.2 of org.eclipse.jetty.fcgi:fcgi-server."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-server@11.0.19-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:5f735979-ff9a-54ea-b8c6-338bd928d327",
      "id": "CVE-2026-2332",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-2332 affects version 11.0.19-tuxcare.2 of org.eclipse.jetty.fcgi:fcgi-server."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-server@11.0.19-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:587be369-9985-58d4-9571-e9abd39e1790",
      "id": "CVE-2026-5795",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-5795 affects version 11.0.19-tuxcare.2 of org.eclipse.jetty.fcgi:fcgi-server."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-server@11.0.19-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:120e6e97-8028-5477-bc4b-fdd6fd33520f",
      "id": "GHSA-58qw-p7qm-5rvh",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 11.0.19-tuxcare.2 of org.eclipse.jetty.fcgi:fcgi-server."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-server@11.0.19-tuxcare.2"
        }
      ]
    }
  ],
  "dependencies": [
    {
      "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-server@11.0.19-tuxcare.2"
    }
  ]
}