{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:1210e29c-5f50-595a-9763-1307d802b971", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-server@9.2.16.v20160414-tuxcare.1", "type": "library", "group": "org.eclipse.jetty.spdy", "name": "spdy-server", "version": "9.2.16.v20160414-tuxcare.1", "purl": "pkg:maven/org.eclipse.jetty.spdy/spdy-server@9.2.16.v20160414-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:d924776f-1f26-558f-a244-439c347c0f01", "id": "CVE-2017-7656", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7656 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-server@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:47ebaf25-00bb-53fd-bf8c-8391e4c5d56c", "id": "CVE-2017-7657", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7657 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-server@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2e5aed9e-b865-5100-ba40-4fa7aba22644", "id": "CVE-2017-7658", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7658 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-server@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cf1c637d-9b01-539c-9d3a-db9c1a472825", "id": "CVE-2017-9735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-9735 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-server@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a3584fa8-6abf-5021-93e3-619daad6ad01", "id": "CVE-2018-12536", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-12536 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-server@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:113ec131-916b-514e-b81e-0420cd460a66", "id": "CVE-2018-12538", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12538 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-server@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:47f1d2e2-b827-5086-8111-3bec56680ef3", "id": "CVE-2018-12545", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12545 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-server@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8bd88f90-e6ab-5c61-b8c7-9f65b48a6b66", "id": "CVE-2019-10241", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-10241 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-server@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c667b0dc-8fe7-558b-b865-ef3f6bd7cddc", "id": "CVE-2019-10246", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10246 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-server@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1ca9bf34-c99b-52d0-8f14-df89e08d8b9a", "id": "CVE-2019-10247", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10247 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-server@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e9c2cbb5-2664-5a33-8d9f-91e17ec98ff0", "id": "CVE-2019-17638", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-17638 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-server@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:db26fa4a-a194-5dc9-a5a4-e5bfa2b1e5fc", "id": "CVE-2020-27216", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-27216 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-server@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7dba5cd9-c673-5745-8f72-f72a92a7503c", "id": "CVE-2020-27218", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27218 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-server@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f0653e32-8baa-5379-bcc4-6a684cfe6f3d", "id": "CVE-2021-28165", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-28165 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-server@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f98000e4-424c-5e10-9347-60a7dbb2d333", "id": "CVE-2021-28169", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-28169 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-server@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:776e7ccc-086c-5567-b96e-c28608dbab34", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-server@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d8681a03-b762-57fc-beab-0d988807db22", "id": "CVE-2022-2047", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-2047 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-server@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6a91fe2d-6f6b-599e-bf8a-e76e08877b95", "id": "CVE-2022-2048", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-2048 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-server@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e8b7206f-efd0-547f-92c3-fbc28f2f9a08", "id": "CVE-2023-26048", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26048 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-server@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a8e1f211-7b24-5224-ba17-c93a7618107c", "id": "CVE-2023-26049", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26049 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-server@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0f4111fe-07d8-5d79-b645-c4c55ec9be8b", "id": "CVE-2023-36479", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-36479 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-server@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cc499309-efe1-5980-8f68-4e1a64837e5a", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-server@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:19f7f432-1b7c-58fb-bb19-8f5ee8ec4fb0", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-server@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d991348c-3c60-55e6-a7c0-38740ab69a2c", "id": "CVE-2024-13009", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-13009 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-server@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bb31f893-dcdb-585d-8218-867156e8b522", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-server@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:786bafde-a8d5-55ef-a8f4-600e06b95a80", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-server@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9eeec0fb-4d6f-5254-8f7d-772ecf372878", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-server@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5a5822d7-ac2c-500b-bc89-d38866804b99", "id": "CVE-2024-9823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-9823 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-server@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f6bab271-e4e5-5fc4-98ea-9052b088df56", "id": "CVE-2025-11143", "analysis": { "state": "not_affected", "detail": "Vulnerability CVE-2025-11143 does not affect version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-server. Jetty version 9.2.16.v20160414 is not affected to CVE-2025-11143 according to advisories." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-server@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:61f40dec-0d5c-557a-8b1a-6ba5a2d70954", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-server@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:226932aa-8535-58a7-888a-f2a7f8a596ab", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-server@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b0a183dc-1f5e-5c83-be65-a43fd9df23b7", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-server@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:15cca62c-1335-5fbb-b9c6-d042a49b0a14", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "resolved", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty.spdy:spdy-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-server@9.2.16.v20160414-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty.spdy/spdy-server@9.2.16.v20160414-tuxcare.1" } ] }