{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:d86f10a6-133b-5c6a-82d4-f83fae26853e", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/apache-jstl@9.2.16.v20160414-tuxcare.1", "type": "library", "group": "org.eclipse.jetty", "name": "apache-jstl", "version": "9.2.16.v20160414-tuxcare.1", "purl": "pkg:maven/org.eclipse.jetty/apache-jstl@9.2.16.v20160414-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:8b82736f-a31e-59c0-8894-88467521ba1b", "id": "CVE-2017-7656", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7656 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:apache-jstl." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/apache-jstl@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fabdcba9-04ef-5b1a-9f90-83871caf3e40", "id": "CVE-2017-7657", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7657 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:apache-jstl." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/apache-jstl@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8d4bc505-4366-5d93-8ce8-efbe1f6a4d98", "id": "CVE-2017-7658", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7658 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:apache-jstl." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/apache-jstl@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7924fdc2-99c1-5104-a93f-7599a0868d68", "id": "CVE-2017-9735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-9735 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:apache-jstl." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/apache-jstl@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:81cf0978-65f2-5e38-9f8c-40ff849ed176", "id": "CVE-2018-12536", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-12536 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:apache-jstl." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/apache-jstl@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d523bbbb-8d3a-583e-960f-56a78eff9186", "id": "CVE-2018-12538", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12538 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:apache-jstl." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/apache-jstl@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:36fb9427-e21d-5aec-9a3d-8dcbf2dece29", "id": "CVE-2018-12545", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12545 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:apache-jstl." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/apache-jstl@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f00f6e83-fe51-5ee2-8a48-d0daf12c7360", "id": "CVE-2019-10241", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-10241 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:apache-jstl." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/apache-jstl@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:25f421c5-9662-5e2f-9d38-cc83b51df5df", "id": "CVE-2019-10246", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10246 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:apache-jstl." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/apache-jstl@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:147a0b75-b0ae-55d2-bcd6-84da541bd45f", "id": "CVE-2019-10247", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10247 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:apache-jstl." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/apache-jstl@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ada08308-8d76-5b96-9e4b-a7785bee9158", "id": "CVE-2019-17638", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-17638 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:apache-jstl." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/apache-jstl@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4175ba46-4c0b-519a-a207-ff8ca2fc5a11", "id": "CVE-2020-27216", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-27216 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:apache-jstl." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/apache-jstl@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4e7085a4-d4ad-5a2d-919d-8dffac6fb676", "id": "CVE-2020-27218", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27218 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:apache-jstl." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/apache-jstl@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3b6939b4-5f61-5905-a51c-8d123751998f", "id": "CVE-2021-28165", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-28165 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:apache-jstl." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/apache-jstl@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f121a7a5-2a1e-5b71-a242-197e0c54dc05", "id": "CVE-2021-28169", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-28169 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:apache-jstl." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/apache-jstl@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b46feb75-fbbf-5624-9cbd-1f7ed524e9e4", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:apache-jstl." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/apache-jstl@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a0cad416-de6e-51bd-aee5-6ba8b49fd3c6", "id": "CVE-2022-2047", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-2047 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:apache-jstl." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/apache-jstl@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4f2d0930-344e-5b83-a96b-18f1069ffecb", "id": "CVE-2022-2048", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-2048 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:apache-jstl." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/apache-jstl@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:836830c7-56d5-5663-9d2c-873c0354c226", "id": "CVE-2023-26048", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26048 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:apache-jstl." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/apache-jstl@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8c93bcce-0707-5135-8765-27c59ad02090", "id": "CVE-2023-26049", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26049 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:apache-jstl." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/apache-jstl@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:432cbbd6-1f97-560b-a9b4-d9b8213df2fc", "id": "CVE-2023-36479", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-36479 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:apache-jstl." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/apache-jstl@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d17be0a3-d179-577e-bb2d-b706cc647eea", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:apache-jstl." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/apache-jstl@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fc8ec030-2e82-50c3-9979-6e9776afa32a", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:apache-jstl." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/apache-jstl@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0f83cedb-74e0-5613-a1ae-25f8b03e2f9d", "id": "CVE-2024-13009", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-13009 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:apache-jstl." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/apache-jstl@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:779ea0e9-2d39-53f7-a2bb-266048174797", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:apache-jstl." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/apache-jstl@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:47d70ab9-fa17-58b0-a4cb-c2468ff975b9", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:apache-jstl." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/apache-jstl@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:57b328de-2181-5bd5-98b9-adfac1dcc207", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:apache-jstl." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/apache-jstl@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:99768889-fbb0-56b0-82d4-1a0a61e89fd0", "id": "CVE-2024-9823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-9823 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:apache-jstl." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/apache-jstl@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d275f706-a81d-52e9-bb68-945420c8e7da", "id": "CVE-2025-11143", "analysis": { "state": "not_affected", "detail": "Vulnerability CVE-2025-11143 does not affect version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:apache-jstl. Jetty version 9.2.16.v20160414 is not affected to CVE-2025-11143 according to advisories." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/apache-jstl@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d9b8fae6-aa7d-5dd1-b436-78f3be958c72", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:apache-jstl." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/apache-jstl@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:21da601d-bec5-519a-9229-69d9722de5dc", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:apache-jstl." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/apache-jstl@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6c712fce-e947-5f86-9523-12080a441357", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:apache-jstl." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/apache-jstl@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c43db2d8-18ff-5fe0-905c-b813180170bd", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "resolved", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:apache-jstl." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/apache-jstl@9.2.16.v20160414-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/apache-jstl@9.2.16.v20160414-tuxcare.1" } ] }