{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:8fcf9dd3-11e4-5490-a6e0-ba83908a03b3", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty.osgi/test-jetty-osgi@9.4.58.v20250814-tuxcare.1", "type": "library", "group": "org.eclipse.jetty.osgi", "name": "test-jetty-osgi", "version": "9.4.58.v20250814-tuxcare.1", "purl": "pkg:maven/org.eclipse.jetty.osgi/test-jetty-osgi@9.4.58.v20250814-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:299e13f6-e44e-5c05-a777-a2610bae5bf7", "id": "CVE-2020-27216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27216 affects version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty.osgi:test-jetty-osgi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/test-jetty-osgi@9.4.58.v20250814-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:940fa883-1831-5379-9fd6-a78ab3d5a1f3", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty.osgi:test-jetty-osgi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/test-jetty-osgi@9.4.58.v20250814-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a140a893-886b-5ee5-9c36-262895ac5500", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty.osgi:test-jetty-osgi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/test-jetty-osgi@9.4.58.v20250814-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4ef71763-1da4-5b8f-81ae-899d5886b2cb", "id": "CVE-2023-36478", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36478 affects version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty.osgi:test-jetty-osgi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/test-jetty-osgi@9.4.58.v20250814-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d3542c13-fc06-5ab3-9946-86155e02d4e7", "id": "CVE-2023-36479", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36479 affects version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty.osgi:test-jetty-osgi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/test-jetty-osgi@9.4.58.v20250814-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e14d7f23-f3b3-56f0-96ef-cd29de34eee6", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty.osgi:test-jetty-osgi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/test-jetty-osgi@9.4.58.v20250814-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ae713504-78ed-54e0-adf3-5ceed250edd0", "id": "CVE-2023-41900", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-41900 affects version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty.osgi:test-jetty-osgi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/test-jetty-osgi@9.4.58.v20250814-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:30e138e1-0bcf-5fd4-b4f7-e2668e3274df", "id": "CVE-2024-22201", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22201 affects version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty.osgi:test-jetty-osgi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/test-jetty-osgi@9.4.58.v20250814-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:35700e04-712a-53fe-b555-b2841c6c0fe9", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty.osgi:test-jetty-osgi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/test-jetty-osgi@9.4.58.v20250814-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d52dc920-27b8-504f-937f-b86e6812dcde", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty.osgi:test-jetty-osgi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/test-jetty-osgi@9.4.58.v20250814-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:787d398c-5036-5fbe-881d-3403403e83a7", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty.osgi:test-jetty-osgi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/test-jetty-osgi@9.4.58.v20250814-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6462ccb5-919f-5252-87f0-d32d0d76b032", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty.osgi:test-jetty-osgi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/test-jetty-osgi@9.4.58.v20250814-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9f23d2c8-dc71-5fea-87e8-f8c26a42ce41", "id": "CVE-2025-5115", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-5115 affects version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty.osgi:test-jetty-osgi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/test-jetty-osgi@9.4.58.v20250814-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0e832cf0-92fb-53fc-a7a2-a9483a1e3bbb", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty.osgi:test-jetty-osgi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/test-jetty-osgi@9.4.58.v20250814-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:db7c63e6-e798-5207-a706-b24feea1da79", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty.osgi:test-jetty-osgi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/test-jetty-osgi@9.4.58.v20250814-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3362ec91-2f70-53cd-9f68-071157841067", "id": "CVE-2026-5795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-5795 is fixed in version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty.osgi:test-jetty-osgi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/test-jetty-osgi@9.4.58.v20250814-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:18e413f1-0ae6-566e-97e2-debe50d95455", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty.osgi:test-jetty-osgi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/test-jetty-osgi@9.4.58.v20250814-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty.osgi/test-jetty-osgi@9.4.58.v20250814-tuxcare.1" } ] }