{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:ed5270a8-de5e-5fa3-b4f4-4f791286ba62", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-client@9.2.16.v20160414-tuxcare.1", "type": "library", "group": "org.eclipse.jetty", "name": "jetty-alpn-client", "version": "9.2.16.v20160414-tuxcare.1", "purl": "pkg:maven/org.eclipse.jetty/jetty-alpn-client@9.2.16.v20160414-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:ee5dedc3-5daf-5ccb-83e0-720d38206d39", "id": "CVE-2017-7656", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7656 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-alpn-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-client@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b2c53d65-1ca1-5fb4-8440-b49c76f73b9d", "id": "CVE-2017-7657", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7657 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-alpn-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-client@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:acaa8f6b-79a6-5ead-b2d5-5e61f86b33c0", "id": "CVE-2017-7658", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7658 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-alpn-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-client@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fb9b6b3c-72aa-55b1-a267-056e16139f01", "id": "CVE-2017-9735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-9735 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-alpn-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-client@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:02f1abb8-dc7b-51e4-9114-1743ce2150d4", "id": "CVE-2018-12536", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-12536 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-alpn-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-client@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5ffead86-387b-5de5-a719-86818c98e3b9", "id": "CVE-2018-12538", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12538 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-alpn-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-client@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:eb5aa490-5926-5140-aeda-2c490d57522f", "id": "CVE-2018-12545", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12545 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-alpn-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-client@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2fe11ad0-6055-56a6-afff-2c3b83e56080", "id": "CVE-2019-10241", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-10241 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-alpn-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-client@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8c43dafe-23f0-52f3-b437-a6e8e00205cc", "id": "CVE-2019-10246", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10246 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-alpn-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-client@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1c747112-bab3-5cab-9195-9ea357da9908", "id": "CVE-2019-10247", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10247 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-alpn-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-client@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c77e3933-4b61-5ad1-9ee3-a5555ed3c9b5", "id": "CVE-2019-17638", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-17638 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-alpn-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-client@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:77e701ad-c47d-5b9e-8e80-bc22e99663e8", "id": "CVE-2020-27216", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-27216 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-alpn-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-client@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e4da7591-07ce-5e75-ade7-cca56011e836", "id": "CVE-2020-27218", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27218 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-alpn-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-client@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:53d6bd35-e060-56ba-86a7-576d7626ffe6", "id": "CVE-2021-28165", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-28165 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-alpn-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-client@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e5a7bbdf-518c-53b0-a8fd-f364bccd1c99", "id": "CVE-2021-28169", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-28169 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-alpn-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-client@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9c573645-8ef9-5572-989f-b5c26f141bbb", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-alpn-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-client@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:42f1ce0c-c355-5543-ba9f-cf95f1db7fe1", "id": "CVE-2022-2047", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-2047 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-alpn-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-client@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ee962644-fae4-581c-8a69-04530d3c5786", "id": "CVE-2022-2048", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-2048 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-alpn-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-client@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:49eb0cb0-f35a-5cc4-87d1-49cca8cd7813", "id": "CVE-2023-26048", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26048 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-alpn-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-client@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b6a0c485-4ee8-57a6-9d29-4fd060bbed66", "id": "CVE-2023-26049", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26049 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-alpn-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-client@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6692871b-bcee-5d93-9929-55768ff7c86d", "id": "CVE-2023-36479", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-36479 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-alpn-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-client@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1865527f-164c-5e8b-8c74-d64e3f043cb8", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-alpn-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-client@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f1b24dc8-93ec-51f2-8435-1a3ce3e1bdb3", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-alpn-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-client@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6136bea9-07af-5b66-baab-00b1d36a417a", "id": "CVE-2024-13009", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-13009 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-alpn-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-client@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1128ebaf-9edf-5d24-b44d-bf07955248c3", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-alpn-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-client@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8ae2b99a-876a-582d-bf18-dfe6e5fc2f71", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-alpn-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-client@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8d1c7ac8-3acb-54bb-af77-316259e6ea21", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-alpn-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-client@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7b060fee-f200-554a-9561-10e032c0f70f", "id": "CVE-2024-9823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-9823 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-alpn-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-client@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f7966e92-b6cb-546d-8f5e-b99054240e40", "id": "CVE-2025-11143", "analysis": { "state": "not_affected", "detail": "Vulnerability CVE-2025-11143 does not affect version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-alpn-client. Jetty version 9.2.16.v20160414 is not affected to CVE-2025-11143 according to advisories." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-client@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2a453cca-f392-5d40-91d2-f900d4ded3a1", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-alpn-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-client@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d9d49532-5b88-5cd1-b232-73fe0d5eed87", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-alpn-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-client@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1eac0d82-f752-589c-b915-9e1655c72a66", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-alpn-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-client@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:28fef731-851d-5b3f-b970-4747dcdf2b94", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "resolved", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-alpn-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-client@9.2.16.v20160414-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-client@9.2.16.v20160414-tuxcare.1" } ] }