{
  "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json",
  "bomFormat": "CycloneDX",
  "specVersion": "1.6",
  "serialNumber": "urn:uuid:cb782bd6-9165-54ab-a857-e045952bf7bc",
  "version": 1,
  "metadata": {
    "tools": [
      {
        "name": "tuxcare-vex-generator",
        "version": "1.0.0"
      }
    ]
  },
  "components": [
    {
      "bom-ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-server@9.4.53.v20231009-tuxcare.5",
      "type": "library",
      "group": "org.eclipse.jetty.websocket",
      "name": "websocket-server",
      "version": "9.4.53.v20231009-tuxcare.5",
      "purl": "pkg:maven/org.eclipse.jetty.websocket/websocket-server@9.4.53.v20231009-tuxcare.5"
    }
  ],
  "vulnerabilities": [
    {
      "bom-ref": "urn:uuid:8ce7d9a1-6857-56f4-b31b-2dd8f32f0295",
      "id": "CVE-2020-25711",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2020-25711 affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty.websocket:websocket-server."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-server@9.4.53.v20231009-tuxcare.5"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:f4b6632b-686f-5240-baf2-a6c8e92ea3fa",
      "id": "CVE-2020-27216",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2020-27216 affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty.websocket:websocket-server."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-server@9.4.53.v20231009-tuxcare.5"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:0e928973-df42-5959-a985-1a0fa971fbfc",
      "id": "CVE-2021-28169",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2021-28169 affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty.websocket:websocket-server."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-server@9.4.53.v20231009-tuxcare.5"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:ed27516a-a6eb-59dd-a4b4-dd0116aedaad",
      "id": "CVE-2021-34428",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2021-34428 affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty.websocket:websocket-server."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-server@9.4.53.v20231009-tuxcare.5"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:53df7f85-cbc9-5912-9baf-750a12eb59ab",
      "id": "CVE-2023-36478",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2023-36478 affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty.websocket:websocket-server."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-server@9.4.53.v20231009-tuxcare.5"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:72e8602b-48a5-51f3-9c53-0583088f71db",
      "id": "CVE-2023-36479",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2023-36479 affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty.websocket:websocket-server."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-server@9.4.53.v20231009-tuxcare.5"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:cd0d39a0-2ca3-5ccd-83a6-7b8fac8ff0ee",
      "id": "CVE-2023-40167",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2023-40167 affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty.websocket:websocket-server."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-server@9.4.53.v20231009-tuxcare.5"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:44ed928f-acb9-5983-87b0-c754184beca1",
      "id": "CVE-2023-41900",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2023-41900 affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty.websocket:websocket-server."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-server@9.4.53.v20231009-tuxcare.5"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:116320ad-b327-5f7e-8164-84dd39184523",
      "id": "CVE-2024-13009",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2024-13009 is fixed in version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty.websocket:websocket-server."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-server@9.4.53.v20231009-tuxcare.5"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:5452f57f-a7c3-5fc3-b0ca-5f1128dff721",
      "id": "CVE-2024-22201",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2024-22201 is fixed in version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty.websocket:websocket-server."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-server@9.4.53.v20231009-tuxcare.5"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:c8ada9d1-9656-5920-ba39-605f371781a1",
      "id": "CVE-2024-6762",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2024-6762 is fixed in version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty.websocket:websocket-server."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-server@9.4.53.v20231009-tuxcare.5"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:a825cdbc-4307-51df-8d70-d2332cf61433",
      "id": "CVE-2024-6763",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2024-6763 is fixed in version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty.websocket:websocket-server."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-server@9.4.53.v20231009-tuxcare.5"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:77006ccc-233e-5aa4-a1cc-b000f801f454",
      "id": "CVE-2024-9823",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2024-9823 is fixed in version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty.websocket:websocket-server."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-server@9.4.53.v20231009-tuxcare.5"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:dc07da7e-19ee-5f54-88b1-c629b8eed2da",
      "id": "CVE-2025-11143",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2025-11143 is fixed in version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty.websocket:websocket-server."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-server@9.4.53.v20231009-tuxcare.5"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:159df174-d94d-58ce-bf52-a757557e573f",
      "id": "CVE-2025-1948",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-1948 affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty.websocket:websocket-server."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-server@9.4.53.v20231009-tuxcare.5"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:3ce3390f-d025-5961-80f5-faa73ac42de3",
      "id": "CVE-2025-5115",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-5115 affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty.websocket:websocket-server."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-server@9.4.53.v20231009-tuxcare.5"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:2108874d-12cd-52b2-a009-46074e01484d",
      "id": "CVE-2026-1605",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-1605 affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty.websocket:websocket-server."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-server@9.4.53.v20231009-tuxcare.5"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:ebbbf507-ab58-51fb-bb51-53b4e73b6b3e",
      "id": "CVE-2026-2332",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-2332 affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty.websocket:websocket-server."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-server@9.4.53.v20231009-tuxcare.5"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:a42485fd-3176-5bd8-9bba-4e56c13d5a99",
      "id": "CVE-2026-5795",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-5795 affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty.websocket:websocket-server."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-server@9.4.53.v20231009-tuxcare.5"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:303d5d64-80ca-57d1-ab52-1b9505a9f14a",
      "id": "GHSA-58qw-p7qm-5rvh",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty.websocket:websocket-server."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-server@9.4.53.v20231009-tuxcare.5"
        }
      ]
    }
  ],
  "dependencies": [
    {
      "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-server@9.4.53.v20231009-tuxcare.5"
    }
  ]
}