{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:6d0fee9b-858d-54b5-b96a-9bd3c4079c84", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-parent@9.2.16.v20160414-tuxcare.1", "type": "library", "group": "org.eclipse.jetty.spdy", "name": "spdy-parent", "version": "9.2.16.v20160414-tuxcare.1", "purl": "pkg:maven/org.eclipse.jetty.spdy/spdy-parent@9.2.16.v20160414-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:02b7f4dc-74b4-5d91-98ff-906b5c1ade10", "id": "CVE-2017-7656", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7656 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-parent@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0ae01147-a39d-5ec6-b07f-450ddf28384a", "id": "CVE-2017-7657", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7657 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-parent@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d4a8eab5-7539-5c4a-b308-0d72f220b0f5", "id": "CVE-2017-7658", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7658 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-parent@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f131db2f-79da-5bd0-bd58-e2340216157d", "id": "CVE-2017-9735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-9735 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-parent@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:56ed15ec-6f4d-5bab-8dee-7a2b87182a06", "id": "CVE-2018-12536", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-12536 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-parent@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:93e497e3-31f4-5894-9ca1-caa9ab63866a", "id": "CVE-2018-12538", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12538 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-parent@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:88b9ddee-0d9d-5329-91e3-d9daa653e303", "id": "CVE-2018-12545", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12545 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-parent@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:62b97080-f4a4-5f59-bbe7-9ba2bd816dd2", "id": "CVE-2019-10241", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-10241 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-parent@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fa70c54d-57e6-56a7-80e2-18036fceb11b", "id": "CVE-2019-10246", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10246 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-parent@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cf7204b4-f4f8-556d-aad5-3163381ec98c", "id": "CVE-2019-10247", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10247 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-parent@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0867b243-090a-5543-93a1-85003b37f12f", "id": "CVE-2019-17638", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-17638 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-parent@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2830a3d6-aea1-5199-8ba8-cf42f2e159d2", "id": "CVE-2020-27216", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-27216 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-parent@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6a447342-a749-507a-a009-05e5cf033fd1", "id": "CVE-2020-27218", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27218 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-parent@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c64c50e2-6ce4-5a48-bbe8-2f14956a7360", "id": "CVE-2021-28165", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-28165 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-parent@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8edeec5a-1ed8-5dc9-8981-a0ece517a6f3", "id": "CVE-2021-28169", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-28169 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-parent@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6e66ea20-1d09-5f72-8469-5412d08c213e", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-parent@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ad1d8179-7bcf-5914-8fd3-befee6a681ea", "id": "CVE-2022-2047", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-2047 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-parent@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:360f9125-2595-5c03-b3a7-997dd258ad4c", "id": "CVE-2022-2048", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-2048 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-parent@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e6892f63-2950-5872-91c3-7d6211bd150e", "id": "CVE-2023-26048", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26048 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-parent@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:75fd9052-79da-50f6-8254-97fdc4dcf21a", "id": "CVE-2023-26049", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26049 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-parent@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a7a9b56b-4827-501f-b910-8b0975c8d8ba", "id": "CVE-2023-36479", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-36479 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-parent@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:31e61226-5539-5640-a71e-66e94f503a70", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-parent@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6ff65998-f45c-58b5-bc79-a0c64145cae1", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-parent@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:16bee92c-dec2-5c3f-9419-4930c8c1f6bd", "id": "CVE-2024-13009", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-13009 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-parent@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:716e557a-4000-550c-9784-63394ff51cc3", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-parent@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4e78adb6-3f84-5ecb-af5e-d780add80293", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-parent@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:57f07cae-64fd-52df-86ec-de98219aea92", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-parent@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:84686562-27c6-5dd9-a6fd-45eed77ade72", "id": "CVE-2024-9823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-9823 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-parent@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a64cea30-a5cd-52de-b8dd-145a21abce85", "id": "CVE-2025-11143", "analysis": { "state": "not_affected", "detail": "Vulnerability CVE-2025-11143 does not affect version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-parent. Jetty version 9.2.16.v20160414 is not affected to CVE-2025-11143 according to advisories." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-parent@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9510d684-c378-5f08-9baf-ffd6370ec63d", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-parent@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:87ef344d-32b8-59b7-a5ea-7b765f60aa2d", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-parent@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c02e14a7-54f7-573b-9cfe-51895fb23474", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-parent@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f69aa00b-0a75-5584-ba1b-c30ff5276d14", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "resolved", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-parent@9.2.16.v20160414-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-parent@9.2.16.v20160414-tuxcare.1" } ] }