{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:8c264fce-c0e4-5d64-bd55-aba5e2ea704e", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/infinispan-parent@9.4.48.v20220622-tuxcare.2", "type": "library", "group": "org.eclipse.jetty", "name": "infinispan-parent", "version": "9.4.48.v20220622-tuxcare.2", "purl": "pkg:maven/org.eclipse.jetty/infinispan-parent@9.4.48.v20220622-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:2f5a397a-4bc1-539c-a5db-b7db60f92983", "id": "CVE-2020-27216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27216 affects version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty:infinispan-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-parent@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8635b1d6-fb1c-5d64-ba14-2cf6df205f58", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty:infinispan-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-parent@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c3b16be8-9ebd-569c-b646-80afefec7435", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty:infinispan-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-parent@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:40b1733d-a261-503f-ad5c-e486b1464b70", "id": "CVE-2023-26048", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26048 is fixed in version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty:infinispan-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-parent@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6e20b60b-6ef6-5898-ab06-bb67fc182738", "id": "CVE-2023-26049", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26049 is fixed in version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty:infinispan-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-parent@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9fe3b649-24b0-5f99-a453-3ce262a3d84b", "id": "CVE-2023-36478", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36478 affects version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty:infinispan-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-parent@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:43737e5b-ba2c-5765-a8c7-c4ecbac37753", "id": "CVE-2023-36479", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-36479 is fixed in version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty:infinispan-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-parent@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e5f4b797-f000-56d2-b22f-6766ca3b93b5", "id": "CVE-2023-40167", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-40167 is fixed in version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty:infinispan-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-parent@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5e7f3190-f9f9-57ef-85a0-76b62c4ef716", "id": "CVE-2023-41900", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-41900 is fixed in version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty:infinispan-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-parent@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:39f98ae9-7523-591b-9fe3-2b61e1a850a8", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty:infinispan-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-parent@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c35660c6-1637-5fb9-9e4e-2ce6819cd22f", "id": "CVE-2024-13009", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-13009 is fixed in version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty:infinispan-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-parent@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d76c0414-5b19-595c-93d7-66b611ceca2d", "id": "CVE-2024-22201", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22201 is fixed in version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty:infinispan-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-parent@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ed0ab1b5-3ce5-55f2-a1b9-122f4f31617c", "id": "CVE-2024-6762", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-6762 is fixed in version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty:infinispan-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-parent@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2662d505-99bd-5bbd-a5cb-fc38a014cc1a", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty:infinispan-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-parent@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:289f5413-d97d-52c0-be86-8ae28cb28a06", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty:infinispan-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-parent@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7284eef2-cbea-50bf-96c2-29ace3647a5c", "id": "CVE-2024-9823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-9823 is fixed in version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty:infinispan-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-parent@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:dcf2b10a-0c25-5132-87c2-a2f4b0cda51f", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty:infinispan-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-parent@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6d178e6c-6b08-55e9-be69-5971ee2190bc", "id": "CVE-2025-5115", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-5115 is fixed in version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty:infinispan-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-parent@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1bf55cf9-a77a-55ee-8e8a-dd708123a19d", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty:infinispan-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-parent@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:aec81a61-56de-58e3-b109-2dc96fe600cb", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty:infinispan-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-parent@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d9291b93-a9c6-5f81-9c6f-de1549de7239", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "resolved", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh is fixed in version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty:infinispan-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-parent@9.4.48.v20220622-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-parent@9.4.48.v20220622-tuxcare.2" } ] }