{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:22d2ebbd-e6d1-535b-b6bf-fae2dbb6cc5d", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty.memcached/jetty-memcached-sessions@9.4.58.v20250814-tuxcare.2", "type": "library", "group": "org.eclipse.jetty.memcached", "name": "jetty-memcached-sessions", "version": "9.4.58.v20250814-tuxcare.2", "purl": "pkg:maven/org.eclipse.jetty.memcached/jetty-memcached-sessions@9.4.58.v20250814-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:27cc4534-cc98-5773-a5fa-ed3f79222eea", "id": "CVE-2020-27216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27216 affects version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty.memcached:jetty-memcached-sessions." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.memcached/jetty-memcached-sessions@9.4.58.v20250814-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a827674c-4949-556d-aa37-844903fbd443", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty.memcached:jetty-memcached-sessions." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.memcached/jetty-memcached-sessions@9.4.58.v20250814-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:597e1cf0-0f41-58ba-a856-d6ebd57c1540", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty.memcached:jetty-memcached-sessions." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.memcached/jetty-memcached-sessions@9.4.58.v20250814-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3a8b7ee0-d756-5dd7-9856-b4df1cf38e0e", "id": "CVE-2023-36478", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36478 affects version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty.memcached:jetty-memcached-sessions." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.memcached/jetty-memcached-sessions@9.4.58.v20250814-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f24f5d07-06cf-5ac4-a3c0-30051425df27", "id": "CVE-2023-36479", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36479 affects version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty.memcached:jetty-memcached-sessions." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.memcached/jetty-memcached-sessions@9.4.58.v20250814-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:26d7526e-bad2-5445-824f-5860b6abd7ce", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty.memcached:jetty-memcached-sessions." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.memcached/jetty-memcached-sessions@9.4.58.v20250814-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3176b926-8d07-58ab-9152-a57d9653d883", "id": "CVE-2023-41900", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-41900 affects version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty.memcached:jetty-memcached-sessions." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.memcached/jetty-memcached-sessions@9.4.58.v20250814-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6d549a7e-c7da-5e4d-a527-794e3b7b11e0", "id": "CVE-2024-22201", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22201 affects version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty.memcached:jetty-memcached-sessions." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.memcached/jetty-memcached-sessions@9.4.58.v20250814-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e8eb90a3-8af1-593f-beb5-65959f7d1d7e", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty.memcached:jetty-memcached-sessions." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.memcached/jetty-memcached-sessions@9.4.58.v20250814-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e121a84f-92a6-55f3-99d1-cc3423c3dcf1", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty.memcached:jetty-memcached-sessions." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.memcached/jetty-memcached-sessions@9.4.58.v20250814-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4a10eee2-ae5f-5a76-a5e9-985448f7a60a", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty.memcached:jetty-memcached-sessions." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.memcached/jetty-memcached-sessions@9.4.58.v20250814-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:dbd4d447-cea4-59fe-91e8-01a31ee8bf26", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty.memcached:jetty-memcached-sessions." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.memcached/jetty-memcached-sessions@9.4.58.v20250814-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6c94fa6a-ee35-57dc-903c-2873dbd46d7e", "id": "CVE-2025-5115", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-5115 affects version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty.memcached:jetty-memcached-sessions." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.memcached/jetty-memcached-sessions@9.4.58.v20250814-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6d1b7f8e-84eb-50dd-a377-3777832689e3", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty.memcached:jetty-memcached-sessions." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.memcached/jetty-memcached-sessions@9.4.58.v20250814-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:48682a9b-be95-5bd2-bbe2-ef39108fc01f", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty.memcached:jetty-memcached-sessions." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.memcached/jetty-memcached-sessions@9.4.58.v20250814-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b17c7907-46f5-51b2-82d9-0d0b253a49fb", "id": "CVE-2026-5795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-5795 is fixed in version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty.memcached:jetty-memcached-sessions." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.memcached/jetty-memcached-sessions@9.4.58.v20250814-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1c498940-7247-5a19-8c0c-9a5555ba2177", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty.memcached:jetty-memcached-sessions." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.memcached/jetty-memcached-sessions@9.4.58.v20250814-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty.memcached/jetty-memcached-sessions@9.4.58.v20250814-tuxcare.2" } ] }