{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:6a111c5f-92e6-53e5-8485-c356dea0c49d", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-httpservice@9.4.48.v20220622-tuxcare.3", "type": "library", "group": "org.eclipse.jetty.osgi", "name": "jetty-httpservice", "version": "9.4.48.v20220622-tuxcare.3", "purl": "pkg:maven/org.eclipse.jetty.osgi/jetty-httpservice@9.4.48.v20220622-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:6a341b9f-6629-5317-9f13-98f796af345f", "id": "CVE-2020-27216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27216 affects version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty.osgi:jetty-httpservice." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-httpservice@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a294b2ee-6d21-581f-bc3b-0c263eac9a65", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty.osgi:jetty-httpservice." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-httpservice@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0fc2b3e1-a7dc-589b-87f6-a83821475cfd", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty.osgi:jetty-httpservice." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-httpservice@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a28ae37b-c155-5517-9351-7f4770120c31", "id": "CVE-2023-26048", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26048 is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty.osgi:jetty-httpservice." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-httpservice@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3bbe752d-2449-5bb3-973e-4c67757683ad", "id": "CVE-2023-26049", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26049 is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty.osgi:jetty-httpservice." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-httpservice@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3f0ad7ab-f9dc-5b61-8f83-2387811139e6", "id": "CVE-2023-36478", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36478 affects version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty.osgi:jetty-httpservice." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-httpservice@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e9c18e98-ccd2-5c7d-b744-891598de8f69", "id": "CVE-2023-36479", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-36479 is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty.osgi:jetty-httpservice." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-httpservice@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:aefd4141-0921-5568-bd41-02a08775ca62", "id": "CVE-2023-40167", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-40167 is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty.osgi:jetty-httpservice." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-httpservice@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fc43ec1c-24c7-50ad-8967-61b4b879e9ca", "id": "CVE-2023-41900", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-41900 is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty.osgi:jetty-httpservice." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-httpservice@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6b432e55-b88f-5458-a907-060194bd51f7", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty.osgi:jetty-httpservice." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-httpservice@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:11cc8a3e-0580-5529-909b-cdd9a1b63f76", "id": "CVE-2024-13009", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-13009 is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty.osgi:jetty-httpservice." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-httpservice@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:811c9d9d-a321-5f29-b43f-0d1ea7a69d78", "id": "CVE-2024-22201", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22201 is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty.osgi:jetty-httpservice." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-httpservice@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ed6ed217-8746-5458-9223-fd62a7bffdff", "id": "CVE-2024-6762", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-6762 is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty.osgi:jetty-httpservice." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-httpservice@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5e942943-3090-5fd6-a0c1-c1385bfc98f1", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty.osgi:jetty-httpservice." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-httpservice@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bf9603ad-3181-56de-88ac-aa903e74b40f", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty.osgi:jetty-httpservice." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-httpservice@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b508921c-ebe1-58be-bead-5a173003479a", "id": "CVE-2024-9823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-9823 is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty.osgi:jetty-httpservice." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-httpservice@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4fd3ea2f-3915-5c0b-a9b6-eed09c2c7ac4", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty.osgi:jetty-httpservice." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-httpservice@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a7039db7-6721-5b8c-af75-f833b6e3b940", "id": "CVE-2025-5115", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-5115 is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty.osgi:jetty-httpservice." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-httpservice@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5ec3dbdb-d946-579c-a745-11d36633fbb7", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty.osgi:jetty-httpservice." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-httpservice@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:688a2dc0-9158-533d-8382-7c7d5ede654c", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty.osgi:jetty-httpservice." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-httpservice@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5b6b733b-443d-597e-9d74-982f2cda9d7a", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "resolved", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty.osgi:jetty-httpservice." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-httpservice@9.4.48.v20220622-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/jetty-httpservice@9.4.48.v20220622-tuxcare.3" } ] }