{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:541aaaf1-161d-5bca-92fd-ea6a0e939473", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/infinispan-embedded@10.0.26-tuxcare.1", "type": "library", "group": "org.eclipse.jetty", "name": "infinispan-embedded", "version": "10.0.26-tuxcare.1", "purl": "pkg:maven/org.eclipse.jetty/infinispan-embedded@10.0.26-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:79b220e1-db2f-5dd3-a314-5956a4e71155", "id": "CVE-2020-25711", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-25711 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:infinispan-embedded." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-embedded@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cc6bd646-7e9b-59b8-b080-3deb250676ef", "id": "CVE-2020-27216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27216 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:infinispan-embedded." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-embedded@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8fe3022a-9c32-5a2a-a347-d109180ba708", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:infinispan-embedded." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-embedded@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ad1a89a6-2f08-5224-90c0-4fd002e34670", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:infinispan-embedded." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-embedded@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b9c1178b-c13c-5b20-ad88-94f8cb99c459", "id": "CVE-2023-36478", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36478 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:infinispan-embedded." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-embedded@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f03f5782-4ed9-5200-abf5-fae20da277d2", "id": "CVE-2023-36479", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36479 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:infinispan-embedded." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-embedded@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c3cec7fa-0962-5f1a-8db6-3443e6a89235", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:infinispan-embedded." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-embedded@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:acb41eda-d8b4-5c39-99bb-3fde6f84bc23", "id": "CVE-2023-41900", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-41900 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:infinispan-embedded." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-embedded@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:73b66f3a-f717-5689-b521-6af49edfbd18", "id": "CVE-2024-22201", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22201 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:infinispan-embedded." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-embedded@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2fbf8420-2708-542a-b196-181caf4f3a12", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:infinispan-embedded." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-embedded@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0e43b5c7-d3bc-5295-88d5-e6ab91bc91c5", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:infinispan-embedded." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-embedded@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a80d0eca-5716-5c64-953b-ceb5f721b6ab", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:infinispan-embedded." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-embedded@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:96997bc6-e8bc-58fc-af48-2298c338e42e", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:infinispan-embedded." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-embedded@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:798afa78-2f66-5a98-86b7-960bf383bc2b", "id": "CVE-2025-5115", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-5115 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:infinispan-embedded." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-embedded@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:82fb466f-0e87-5f28-ae51-267aafe9b2bb", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:infinispan-embedded." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-embedded@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cbbb4616-ebe4-5d6c-9f12-7f47bf034465", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:infinispan-embedded." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-embedded@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ba7e8fb7-f9fd-5fdf-ba7b-ef158d286270", "id": "CVE-2026-5795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-5795 is fixed in version 10.0.26-tuxcare.1 of org.eclipse.jetty:infinispan-embedded." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-embedded@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c286d596-481e-511b-b320-dcb5f851e0fa", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:infinispan-embedded." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-embedded@10.0.26-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-embedded@10.0.26-tuxcare.1" } ] }