{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:41b03fa9-ec74-5a51-b7cd-0b64d9c09647", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/infinispan-common@9.4.58.v20250814-tuxcare.1", "type": "library", "group": "org.eclipse.jetty", "name": "infinispan-common", "version": "9.4.58.v20250814-tuxcare.1", "purl": "pkg:maven/org.eclipse.jetty/infinispan-common@9.4.58.v20250814-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:cf5dc9ef-0bde-5b10-9193-a8a55866c307", "id": "CVE-2020-27216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27216 affects version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty:infinispan-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-common@9.4.58.v20250814-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:50048624-77bc-5bfe-8328-2b42bb38ed3e", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty:infinispan-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-common@9.4.58.v20250814-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d6f3dc01-7614-573b-9a90-c61b292080d8", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty:infinispan-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-common@9.4.58.v20250814-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:19518751-c29c-57a6-841f-d3be8e0da31d", "id": "CVE-2023-36478", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36478 affects version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty:infinispan-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-common@9.4.58.v20250814-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1a73f6f5-2976-595f-99b7-c0e33879ed3a", "id": "CVE-2023-36479", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36479 affects version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty:infinispan-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-common@9.4.58.v20250814-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cfd8484c-f0fc-5a5d-b39f-587e11c39497", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty:infinispan-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-common@9.4.58.v20250814-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c0242eb6-7d82-57a1-8811-adc0e2afdd25", "id": "CVE-2023-41900", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-41900 affects version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty:infinispan-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-common@9.4.58.v20250814-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:58225f0f-8766-5686-880c-91803f06cc84", "id": "CVE-2024-22201", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22201 affects version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty:infinispan-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-common@9.4.58.v20250814-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:528197cb-695a-5566-9348-dcdadeb1de1c", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty:infinispan-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-common@9.4.58.v20250814-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ba9540e2-799d-5400-848e-078747ea01fa", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty:infinispan-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-common@9.4.58.v20250814-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:def5f916-d665-5ef7-a52f-a824cbfca0a3", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty:infinispan-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-common@9.4.58.v20250814-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:92f221b7-a40e-5d2a-a86b-efcf7a85b59c", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty:infinispan-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-common@9.4.58.v20250814-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1591417a-c671-53f6-ae0b-ee5c1f2c6048", "id": "CVE-2025-5115", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-5115 affects version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty:infinispan-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-common@9.4.58.v20250814-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3ae2eba9-ec3e-53f5-ab74-32116520347c", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty:infinispan-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-common@9.4.58.v20250814-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0434a79c-0bcf-52ab-bd84-76cbe0e6f05e", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty:infinispan-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-common@9.4.58.v20250814-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:198d975b-2bcf-58e2-8998-10a523fa1742", "id": "CVE-2026-5795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-5795 is fixed in version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty:infinispan-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-common@9.4.58.v20250814-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c4e9225f-4010-5785-973d-26e01be108a1", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty:infinispan-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-common@9.4.58.v20250814-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-common@9.4.58.v20250814-tuxcare.1" } ] }