{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:8684114f-82de-5081-afb7-6ae79cb446bb", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty.osgi/test-jetty-osgi-webapp-resources@9.4.48.v20220622-tuxcare.2", "type": "library", "group": "org.eclipse.jetty.osgi", "name": "test-jetty-osgi-webapp-resources", "version": "9.4.48.v20220622-tuxcare.2", "purl": "pkg:maven/org.eclipse.jetty.osgi/test-jetty-osgi-webapp-resources@9.4.48.v20220622-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:0f7b10b6-bcdf-5989-961a-efc514eb14b7", "id": "CVE-2020-27216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27216 affects version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty.osgi:test-jetty-osgi-webapp-resources." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/test-jetty-osgi-webapp-resources@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5f1d4b09-150f-5b32-bfd8-d3115a7ed8e0", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty.osgi:test-jetty-osgi-webapp-resources." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/test-jetty-osgi-webapp-resources@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cd188274-cf89-5fd7-9410-96af247275d2", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty.osgi:test-jetty-osgi-webapp-resources." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/test-jetty-osgi-webapp-resources@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d3968bc7-8223-527e-9f97-ca790c0021f6", "id": "CVE-2023-26048", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26048 is fixed in version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty.osgi:test-jetty-osgi-webapp-resources." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/test-jetty-osgi-webapp-resources@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:70422acc-0f6e-54e9-961e-8b6974baad1f", "id": "CVE-2023-26049", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26049 is fixed in version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty.osgi:test-jetty-osgi-webapp-resources." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/test-jetty-osgi-webapp-resources@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:54f1e831-5e3c-5f67-a92f-9c870c4adf42", "id": "CVE-2023-36478", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36478 affects version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty.osgi:test-jetty-osgi-webapp-resources." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/test-jetty-osgi-webapp-resources@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5f4d894c-f6f7-57ec-bbb8-04823e2a1f14", "id": "CVE-2023-36479", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-36479 is fixed in version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty.osgi:test-jetty-osgi-webapp-resources." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/test-jetty-osgi-webapp-resources@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3a4d2ceb-e973-5c73-82da-bf56ffc57ee4", "id": "CVE-2023-40167", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-40167 is fixed in version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty.osgi:test-jetty-osgi-webapp-resources." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/test-jetty-osgi-webapp-resources@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:eab3cb7a-125f-57ba-8a53-26527b4c0270", "id": "CVE-2023-41900", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-41900 is fixed in version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty.osgi:test-jetty-osgi-webapp-resources." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/test-jetty-osgi-webapp-resources@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:48233c23-8a3e-5ffd-98d6-a28be563795b", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty.osgi:test-jetty-osgi-webapp-resources." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/test-jetty-osgi-webapp-resources@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:03d378ab-83e2-5c66-9c8e-0b2aa36418e2", "id": "CVE-2024-13009", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-13009 is fixed in version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty.osgi:test-jetty-osgi-webapp-resources." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/test-jetty-osgi-webapp-resources@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d8d81a48-164e-52e7-9ff2-53ac8bea5df2", "id": "CVE-2024-22201", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22201 is fixed in version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty.osgi:test-jetty-osgi-webapp-resources." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/test-jetty-osgi-webapp-resources@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2bafb9d9-a035-52da-b818-8d18a92c9958", "id": "CVE-2024-6762", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-6762 is fixed in version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty.osgi:test-jetty-osgi-webapp-resources." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/test-jetty-osgi-webapp-resources@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:edbb6e15-30a9-593f-a9b6-9df0bd273180", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty.osgi:test-jetty-osgi-webapp-resources." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/test-jetty-osgi-webapp-resources@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:58dffffc-4744-5acd-aa30-566f1a06146e", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty.osgi:test-jetty-osgi-webapp-resources." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/test-jetty-osgi-webapp-resources@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5a21799d-f8b1-5a9c-b57c-eec0dd32981c", "id": "CVE-2024-9823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-9823 is fixed in version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty.osgi:test-jetty-osgi-webapp-resources." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/test-jetty-osgi-webapp-resources@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0ca6a4f9-47f7-5fe5-bfef-692cf5ba4818", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty.osgi:test-jetty-osgi-webapp-resources." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/test-jetty-osgi-webapp-resources@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:24a77378-d7da-5131-89e6-099a49246f7d", "id": "CVE-2025-5115", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-5115 is fixed in version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty.osgi:test-jetty-osgi-webapp-resources." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/test-jetty-osgi-webapp-resources@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2c060fa3-eff6-541e-9a64-95881cf676ca", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty.osgi:test-jetty-osgi-webapp-resources." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/test-jetty-osgi-webapp-resources@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f21a3e30-2550-515a-9d2b-3bd8fa3ab048", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty.osgi:test-jetty-osgi-webapp-resources." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/test-jetty-osgi-webapp-resources@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a117eb89-f292-5624-9c0e-4ca17c40322a", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "resolved", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh is fixed in version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty.osgi:test-jetty-osgi-webapp-resources." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/test-jetty-osgi-webapp-resources@9.4.48.v20220622-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/test-jetty-osgi-webapp-resources@9.4.48.v20220622-tuxcare.2" } ] }