{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:f8687eb1-90e4-54c3-8c98-4e54b6387752", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty.quic/quic-server@10.0.26-tuxcare.1", "type": "library", "group": "org.eclipse.jetty.quic", "name": "quic-server", "version": "10.0.26-tuxcare.1", "purl": "pkg:maven/org.eclipse.jetty.quic/quic-server@10.0.26-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:6ca33bf8-8402-5478-bb74-d2a86d7aebdb", "id": "CVE-2020-25711", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-25711 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.quic:quic-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.quic/quic-server@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f7ff49ae-3d94-54d0-ab8d-5419229f38f2", "id": "CVE-2020-27216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27216 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.quic:quic-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.quic/quic-server@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b25f28fc-7243-56b7-962a-8b0329da42d6", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.quic:quic-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.quic/quic-server@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8e7f4ec9-0803-5bf2-9cf0-ebd0d9660808", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.quic:quic-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.quic/quic-server@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d92fbeb1-b0b0-5835-929f-c3c8e266fdc1", "id": "CVE-2023-36478", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36478 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.quic:quic-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.quic/quic-server@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3dc5fd8c-1a6e-58e4-8dc9-d75b5c293658", "id": "CVE-2023-36479", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36479 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.quic:quic-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.quic/quic-server@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c962bf06-241e-5c3e-a628-6421f1fde06e", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.quic:quic-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.quic/quic-server@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:80c3faa6-b078-50d1-afbf-0c21dfccba3b", "id": "CVE-2023-41900", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-41900 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.quic:quic-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.quic/quic-server@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9ee89ddc-5002-535a-99a3-1c8a3be5c754", "id": "CVE-2024-22201", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22201 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.quic:quic-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.quic/quic-server@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:523942f8-b581-5af2-9413-d2a1abbd76c5", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.quic:quic-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.quic/quic-server@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5c1ffe4a-17a7-5776-87e7-4122f540ea32", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.quic:quic-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.quic/quic-server@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f2ba531e-54de-5a9f-97da-0f23628688e3", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.quic:quic-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.quic/quic-server@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:70038d21-af71-5c22-a028-8f68530b2dd4", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.quic:quic-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.quic/quic-server@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0dc09cef-56c9-5a48-94ef-c51e3e0c8f7c", "id": "CVE-2025-5115", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-5115 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.quic:quic-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.quic/quic-server@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:63dd273e-06b3-5a7e-be49-ffef9372b1a2", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.quic:quic-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.quic/quic-server@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:790f696c-d9d0-5d5c-b2a5-dcccd7b6eee8", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.quic:quic-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.quic/quic-server@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c898c9a0-1e77-5ea9-af5b-6ffc596a8b9c", "id": "CVE-2026-5795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-5795 is fixed in version 10.0.26-tuxcare.1 of org.eclipse.jetty.quic:quic-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.quic/quic-server@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:afb15bba-efb3-5a1b-ab17-d193ae97ecbf", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.quic:quic-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.quic/quic-server@10.0.26-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty.quic/quic-server@10.0.26-tuxcare.1" } ] }