{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:fb762a6e-b1ab-5ec1-b9bb-9124dbceade4", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-client@9.2.16.v20160414-tuxcare.1", "type": "library", "group": "org.eclipse.jetty.spdy", "name": "spdy-client", "version": "9.2.16.v20160414-tuxcare.1", "purl": "pkg:maven/org.eclipse.jetty.spdy/spdy-client@9.2.16.v20160414-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:9bcac11a-a3b0-5fac-9b31-13daa2940183", "id": "CVE-2017-7656", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7656 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-client@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:eaf65973-5d6b-54c4-8c5a-1599b30f075a", "id": "CVE-2017-7657", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7657 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-client@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ec6a10db-206a-554e-b483-92f50326168d", "id": "CVE-2017-7658", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7658 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-client@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8451bbc8-140a-5ff2-b7be-e605c69292a2", "id": "CVE-2017-9735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-9735 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-client@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bbb1b2b8-ac2d-54d7-b94d-66d299c0ad4a", "id": "CVE-2018-12536", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-12536 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-client@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8e8e4fe6-69b2-55ac-ab0c-e41a72b3063f", "id": "CVE-2018-12538", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12538 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-client@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5e767c80-54a3-5d64-9e8b-2d23ed9337e2", "id": "CVE-2018-12545", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12545 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-client@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7e2fc439-5267-5149-9945-6f6a228c9ec5", "id": "CVE-2019-10241", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-10241 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-client@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:718ece02-7b0e-5baf-b862-f77efb6eebdf", "id": "CVE-2019-10246", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10246 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-client@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:07b2ab9f-6fe2-58a7-8c20-eab52b8ea827", "id": "CVE-2019-10247", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10247 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-client@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fa0a711f-a961-5621-b865-67d48d699c86", "id": "CVE-2019-17638", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-17638 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-client@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f971cd5b-3303-5633-9e3d-a997dd35a17b", "id": "CVE-2020-27216", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-27216 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-client@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8531c92a-f5b3-5bf6-95db-3980ba7289a4", "id": "CVE-2020-27218", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27218 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-client@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:50d84a81-3da1-51bd-9709-dcaf53510ab2", "id": "CVE-2021-28165", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-28165 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-client@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:50992f18-9398-58a8-922f-7e2ef50dbd94", "id": "CVE-2021-28169", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-28169 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-client@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:72c1617b-cde2-5172-b0df-cfb755cca95d", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-client@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0fe2da93-482e-5142-8cc1-874b0be53be8", "id": "CVE-2022-2047", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-2047 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-client@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a5fe759b-370f-5bbf-b7ff-d5113f1d04dd", "id": "CVE-2022-2048", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-2048 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-client@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d5ef366c-f96f-58f9-a8dd-6917af90cf93", "id": "CVE-2023-26048", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26048 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-client@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9c7d21b9-e449-5a24-a65f-4f80331fe0dc", "id": "CVE-2023-26049", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26049 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-client@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7287bef2-b167-5eed-bba5-6beade279caf", "id": "CVE-2023-36479", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-36479 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-client@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5d4cadf3-1d39-5891-ab34-42791ab6aa3e", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-client@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4a5cccd3-2873-532d-b030-1178d3d0896c", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-client@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:08b7a56e-8519-54c7-ae99-27e6cd6112d5", "id": "CVE-2024-13009", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-13009 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-client@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:69dccf4d-7b27-57a7-b342-4b47cda5c4a3", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-client@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cc342ea9-acbd-54b9-868b-bc1130eba610", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-client@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6635bbea-1546-503a-afaa-f239acc3e575", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-client@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dea75dc7-333d-5847-8a63-8453af4249b0", "id": "CVE-2024-9823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-9823 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-client@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:04a09b72-9dae-510c-b7ba-9a044f48edc1", "id": "CVE-2025-11143", "analysis": { "state": "not_affected", "detail": "Vulnerability CVE-2025-11143 does not affect version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-client. Jetty version 9.2.16.v20160414 is not affected to CVE-2025-11143 according to advisories." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-client@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4bbb36f1-4a4b-55a0-86e2-8fc0f27ccbe4", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-client@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b7b8c6d3-c3f6-53f2-a6ab-0cec9d1c3d00", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-client@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8061861d-82b3-5fbc-8bc1-215f5afd483a", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-client@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:08444c5a-a067-5a0f-b820-9c8033006fc8", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "resolved", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-client@9.2.16.v20160414-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-client@9.2.16.v20160414-tuxcare.1" } ] }