{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:369608da-bb43-5c5b-9ff9-be4bcd3158cb", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-server@9.4.53.v20231009-tuxcare.4", "type": "library", "group": "org.eclipse.jetty.fcgi", "name": "fcgi-server", "version": "9.4.53.v20231009-tuxcare.4", "purl": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-server@9.4.53.v20231009-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:b8db977e-4b20-5cad-afd4-abd31de1dd78", "id": "CVE-2020-25711", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-25711 affects version 9.4.53.v20231009-tuxcare.4 of org.eclipse.jetty.fcgi:fcgi-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-server@9.4.53.v20231009-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:23d9c1c4-8b4e-5b25-ac5e-a357caf603cc", "id": "CVE-2020-27216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27216 affects version 9.4.53.v20231009-tuxcare.4 of org.eclipse.jetty.fcgi:fcgi-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-server@9.4.53.v20231009-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:39ed8857-63be-5529-ace4-fa0428d07741", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 9.4.53.v20231009-tuxcare.4 of org.eclipse.jetty.fcgi:fcgi-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-server@9.4.53.v20231009-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f91cdc1f-95f0-5842-880a-108fc76d8c9a", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 9.4.53.v20231009-tuxcare.4 of org.eclipse.jetty.fcgi:fcgi-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-server@9.4.53.v20231009-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:57b44e6e-e6ae-5aa0-884b-0cc608783bea", "id": "CVE-2023-36478", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36478 affects version 9.4.53.v20231009-tuxcare.4 of org.eclipse.jetty.fcgi:fcgi-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-server@9.4.53.v20231009-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e50bbe3d-1391-5b19-b78c-910abfba6b80", "id": "CVE-2023-36479", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36479 affects version 9.4.53.v20231009-tuxcare.4 of org.eclipse.jetty.fcgi:fcgi-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-server@9.4.53.v20231009-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:5622e811-ed53-5b08-a490-235e1e80828a", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 9.4.53.v20231009-tuxcare.4 of org.eclipse.jetty.fcgi:fcgi-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-server@9.4.53.v20231009-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:436280a7-4f85-5da5-b1d7-f2b08c80ad41", "id": "CVE-2023-41900", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-41900 affects version 9.4.53.v20231009-tuxcare.4 of org.eclipse.jetty.fcgi:fcgi-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-server@9.4.53.v20231009-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b2f51d18-c02e-56c7-bbf0-23c57044ff1f", "id": "CVE-2024-13009", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-13009 is fixed in version 9.4.53.v20231009-tuxcare.4 of org.eclipse.jetty.fcgi:fcgi-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-server@9.4.53.v20231009-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7280a9e6-5114-50f8-9ede-17df8bcb4a43", "id": "CVE-2024-22201", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22201 is fixed in version 9.4.53.v20231009-tuxcare.4 of org.eclipse.jetty.fcgi:fcgi-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-server@9.4.53.v20231009-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:9e5aa73c-acf8-59ed-8224-2fd8ac4969df", "id": "CVE-2024-6762", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-6762 is fixed in version 9.4.53.v20231009-tuxcare.4 of org.eclipse.jetty.fcgi:fcgi-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-server@9.4.53.v20231009-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d2f08ef5-2cb7-533e-8a8c-c920fd839ef0", "id": "CVE-2024-6763", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-6763 is fixed in version 9.4.53.v20231009-tuxcare.4 of org.eclipse.jetty.fcgi:fcgi-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-server@9.4.53.v20231009-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c015a3d8-b952-56a8-a9d2-048c37ed262a", "id": "CVE-2024-9823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-9823 is fixed in version 9.4.53.v20231009-tuxcare.4 of org.eclipse.jetty.fcgi:fcgi-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-server@9.4.53.v20231009-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:02496123-19e8-5d38-9a55-1b40662aa03c", "id": "CVE-2025-11143", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-11143 is fixed in version 9.4.53.v20231009-tuxcare.4 of org.eclipse.jetty.fcgi:fcgi-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-server@9.4.53.v20231009-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:da0bc62e-5fb4-5701-89fa-5f9d3a854ff7", "id": "CVE-2025-1948", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-1948 affects version 9.4.53.v20231009-tuxcare.4 of org.eclipse.jetty.fcgi:fcgi-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-server@9.4.53.v20231009-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:1a39b5b2-724f-57a0-9d61-92ce93110022", "id": "CVE-2025-5115", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-5115 affects version 9.4.53.v20231009-tuxcare.4 of org.eclipse.jetty.fcgi:fcgi-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-server@9.4.53.v20231009-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a7e268e0-d85f-5506-b05c-5cdd284488db", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 9.4.53.v20231009-tuxcare.4 of org.eclipse.jetty.fcgi:fcgi-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-server@9.4.53.v20231009-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:aa4b0009-de13-58e1-93a2-3aa1b0ef8619", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 9.4.53.v20231009-tuxcare.4 of org.eclipse.jetty.fcgi:fcgi-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-server@9.4.53.v20231009-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:77e6b307-60d9-5fdd-8745-3eada12c6129", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 9.4.53.v20231009-tuxcare.4 of org.eclipse.jetty.fcgi:fcgi-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-server@9.4.53.v20231009-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7862efa6-58fa-5ece-977e-16d8b12b204b", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 9.4.53.v20231009-tuxcare.4 of org.eclipse.jetty.fcgi:fcgi-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-server@9.4.53.v20231009-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-server@9.4.53.v20231009-tuxcare.4" } ] }