{
  "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json",
  "bomFormat": "CycloneDX",
  "specVersion": "1.6",
  "serialNumber": "urn:uuid:75b82948-a14b-5b5c-bac0-75966e04b976",
  "version": 1,
  "metadata": {
    "tools": [
      {
        "name": "tuxcare-vex-generator",
        "version": "1.0.0"
      }
    ]
  },
  "components": [
    {
      "bom-ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-servlet@9.4.53.v20231009-tuxcare.5",
      "type": "library",
      "group": "org.eclipse.jetty.websocket",
      "name": "websocket-servlet",
      "version": "9.4.53.v20231009-tuxcare.5",
      "purl": "pkg:maven/org.eclipse.jetty.websocket/websocket-servlet@9.4.53.v20231009-tuxcare.5"
    }
  ],
  "vulnerabilities": [
    {
      "bom-ref": "urn:uuid:2b236265-ad02-5857-97d0-db6abc1cdf03",
      "id": "CVE-2020-25711",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2020-25711 affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty.websocket:websocket-servlet."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-servlet@9.4.53.v20231009-tuxcare.5"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:db577bc8-9b45-5623-b14d-cfa50e5947e1",
      "id": "CVE-2020-27216",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2020-27216 affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty.websocket:websocket-servlet."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-servlet@9.4.53.v20231009-tuxcare.5"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:91a90a1a-f82b-55ef-9be9-801847ee8e8a",
      "id": "CVE-2021-28169",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2021-28169 affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty.websocket:websocket-servlet."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-servlet@9.4.53.v20231009-tuxcare.5"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:90adbcff-be11-59a8-967c-8c19899eb143",
      "id": "CVE-2021-34428",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2021-34428 affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty.websocket:websocket-servlet."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-servlet@9.4.53.v20231009-tuxcare.5"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:0124f866-419d-50cf-937c-65402538b984",
      "id": "CVE-2023-36478",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2023-36478 affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty.websocket:websocket-servlet."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-servlet@9.4.53.v20231009-tuxcare.5"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:3b2ae179-f15e-5864-8a4d-523c5945bdec",
      "id": "CVE-2023-36479",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2023-36479 affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty.websocket:websocket-servlet."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-servlet@9.4.53.v20231009-tuxcare.5"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:fca2f50c-1eeb-50ed-9184-adfb6a6dfb0e",
      "id": "CVE-2023-40167",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2023-40167 affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty.websocket:websocket-servlet."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-servlet@9.4.53.v20231009-tuxcare.5"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:7acd25cd-edea-5a67-a117-4f170022cee2",
      "id": "CVE-2023-41900",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2023-41900 affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty.websocket:websocket-servlet."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-servlet@9.4.53.v20231009-tuxcare.5"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:e047dae5-652a-544f-93d6-5892c20ee2dd",
      "id": "CVE-2024-13009",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2024-13009 is fixed in version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty.websocket:websocket-servlet."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-servlet@9.4.53.v20231009-tuxcare.5"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:e67ac053-c838-5da5-9754-0c1e48310bd3",
      "id": "CVE-2024-22201",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2024-22201 is fixed in version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty.websocket:websocket-servlet."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-servlet@9.4.53.v20231009-tuxcare.5"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:bea82df2-97ca-54fb-a278-c7f3126714e0",
      "id": "CVE-2024-6762",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2024-6762 is fixed in version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty.websocket:websocket-servlet."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-servlet@9.4.53.v20231009-tuxcare.5"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:0060fdff-1e88-5e88-9d11-3b4ec67c379f",
      "id": "CVE-2024-6763",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2024-6763 is fixed in version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty.websocket:websocket-servlet."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-servlet@9.4.53.v20231009-tuxcare.5"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:99fea099-0d18-5817-ac27-d126e8283e01",
      "id": "CVE-2024-9823",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2024-9823 is fixed in version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty.websocket:websocket-servlet."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-servlet@9.4.53.v20231009-tuxcare.5"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:5b1cf29e-5d93-5873-bd48-47dcc8e7f96f",
      "id": "CVE-2025-11143",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2025-11143 is fixed in version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty.websocket:websocket-servlet."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-servlet@9.4.53.v20231009-tuxcare.5"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:7b7543ff-ffc7-5c9a-8610-5c1c8a5a40bc",
      "id": "CVE-2025-1948",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-1948 affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty.websocket:websocket-servlet."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-servlet@9.4.53.v20231009-tuxcare.5"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:0943c242-82d8-5b0a-98e1-f3188ae389e3",
      "id": "CVE-2025-5115",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-5115 affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty.websocket:websocket-servlet."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-servlet@9.4.53.v20231009-tuxcare.5"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:93c49617-f21a-527f-b1bf-07c751170477",
      "id": "CVE-2026-1605",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-1605 affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty.websocket:websocket-servlet."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-servlet@9.4.53.v20231009-tuxcare.5"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:49067429-bf26-516c-b21e-e142a439c917",
      "id": "CVE-2026-2332",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-2332 affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty.websocket:websocket-servlet."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-servlet@9.4.53.v20231009-tuxcare.5"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:8ec0255f-3f2c-51e1-b1d7-3316e232bc52",
      "id": "CVE-2026-5795",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-5795 affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty.websocket:websocket-servlet."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-servlet@9.4.53.v20231009-tuxcare.5"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:f5b92b88-5d6c-5ff1-9631-c8c3b7d4119b",
      "id": "GHSA-58qw-p7qm-5rvh",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty.websocket:websocket-servlet."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-servlet@9.4.53.v20231009-tuxcare.5"
        }
      ]
    }
  ],
  "dependencies": [
    {
      "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-servlet@9.4.53.v20231009-tuxcare.5"
    }
  ]
}