{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:455baebc-b6d5-5223-bd45-9a15043064be", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty.osgi/test-jetty-osgi-webapp-resources@9.4.58.v20250814-tuxcare.1", "type": "library", "group": "org.eclipse.jetty.osgi", "name": "test-jetty-osgi-webapp-resources", "version": "9.4.58.v20250814-tuxcare.1", "purl": "pkg:maven/org.eclipse.jetty.osgi/test-jetty-osgi-webapp-resources@9.4.58.v20250814-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:a26512fe-0a85-5155-bb57-6f83c6917b57", "id": "CVE-2020-27216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27216 affects version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty.osgi:test-jetty-osgi-webapp-resources." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/test-jetty-osgi-webapp-resources@9.4.58.v20250814-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7d8508cd-5df6-550a-a794-f4112d3e2375", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty.osgi:test-jetty-osgi-webapp-resources." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/test-jetty-osgi-webapp-resources@9.4.58.v20250814-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dd91cc9d-bc8e-5af9-9f8d-6d459239c77b", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty.osgi:test-jetty-osgi-webapp-resources." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/test-jetty-osgi-webapp-resources@9.4.58.v20250814-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:477f361b-165f-5123-b887-141dc0b57534", "id": "CVE-2023-36478", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36478 affects version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty.osgi:test-jetty-osgi-webapp-resources." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/test-jetty-osgi-webapp-resources@9.4.58.v20250814-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:96733a34-8629-5601-9526-52aa794e3116", "id": "CVE-2023-36479", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36479 affects version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty.osgi:test-jetty-osgi-webapp-resources." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/test-jetty-osgi-webapp-resources@9.4.58.v20250814-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5a075144-42ae-5dd8-844e-32a0042e63d9", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty.osgi:test-jetty-osgi-webapp-resources." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/test-jetty-osgi-webapp-resources@9.4.58.v20250814-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b22b9a05-54b2-5005-aea8-773101fc16ba", "id": "CVE-2023-41900", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-41900 affects version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty.osgi:test-jetty-osgi-webapp-resources." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/test-jetty-osgi-webapp-resources@9.4.58.v20250814-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:416c3e42-a4da-52b7-b9a5-4fb81a763090", "id": "CVE-2024-22201", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22201 affects version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty.osgi:test-jetty-osgi-webapp-resources." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/test-jetty-osgi-webapp-resources@9.4.58.v20250814-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7006a480-9f7e-59dc-935b-bd270803183f", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty.osgi:test-jetty-osgi-webapp-resources." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/test-jetty-osgi-webapp-resources@9.4.58.v20250814-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b9b62574-7b99-50cf-9ed9-5a2c2526e858", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty.osgi:test-jetty-osgi-webapp-resources." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/test-jetty-osgi-webapp-resources@9.4.58.v20250814-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e624d890-cbde-5a16-a55a-cba96cd134fa", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty.osgi:test-jetty-osgi-webapp-resources." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/test-jetty-osgi-webapp-resources@9.4.58.v20250814-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:76e6c0f0-5f65-5e6a-b326-febb7fe30ce4", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty.osgi:test-jetty-osgi-webapp-resources." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/test-jetty-osgi-webapp-resources@9.4.58.v20250814-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ddc1712a-2616-5051-bc3f-f290a1ebbf07", "id": "CVE-2025-5115", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-5115 affects version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty.osgi:test-jetty-osgi-webapp-resources." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/test-jetty-osgi-webapp-resources@9.4.58.v20250814-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:58bf564e-7296-5b43-8da5-58b17e46f12e", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty.osgi:test-jetty-osgi-webapp-resources." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/test-jetty-osgi-webapp-resources@9.4.58.v20250814-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2c040943-0af5-53e1-87d5-6443a49dd8b1", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty.osgi:test-jetty-osgi-webapp-resources." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/test-jetty-osgi-webapp-resources@9.4.58.v20250814-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6ca9b897-c692-5324-b76b-0110bc01c16b", "id": "CVE-2026-5795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-5795 is fixed in version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty.osgi:test-jetty-osgi-webapp-resources." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/test-jetty-osgi-webapp-resources@9.4.58.v20250814-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fce935a6-25a7-5995-b649-77422114180d", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty.osgi:test-jetty-osgi-webapp-resources." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/test-jetty-osgi-webapp-resources@9.4.58.v20250814-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/test-jetty-osgi-webapp-resources@9.4.58.v20250814-tuxcare.1" } ] }