{
  "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json",
  "bomFormat": "CycloneDX",
  "specVersion": "1.6",
  "serialNumber": "urn:uuid:2ff487a5-ef4b-5f1c-9d2b-46fdbafe7ec4",
  "version": 1,
  "metadata": {
    "tools": [
      {
        "name": "tuxcare-vex-generator",
        "version": "1.0.0"
      }
    ]
  },
  "components": [
    {
      "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-conscrypt-client@9.4.53.v20231009-tuxcare.4",
      "type": "library",
      "group": "org.eclipse.jetty",
      "name": "jetty-alpn-conscrypt-client",
      "version": "9.4.53.v20231009-tuxcare.4",
      "purl": "pkg:maven/org.eclipse.jetty/jetty-alpn-conscrypt-client@9.4.53.v20231009-tuxcare.4"
    }
  ],
  "vulnerabilities": [
    {
      "bom-ref": "urn:uuid:acda74c6-80e0-5bdf-a185-ccbd3214aebe",
      "id": "CVE-2020-25711",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2020-25711 affects version 9.4.53.v20231009-tuxcare.4 of org.eclipse.jetty:jetty-alpn-conscrypt-client."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-conscrypt-client@9.4.53.v20231009-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:9545665d-f22d-5676-9853-fc4179f7f6f3",
      "id": "CVE-2020-27216",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2020-27216 affects version 9.4.53.v20231009-tuxcare.4 of org.eclipse.jetty:jetty-alpn-conscrypt-client."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-conscrypt-client@9.4.53.v20231009-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:fc0d1415-a755-5eba-a065-b0fdb39f978e",
      "id": "CVE-2021-28169",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2021-28169 affects version 9.4.53.v20231009-tuxcare.4 of org.eclipse.jetty:jetty-alpn-conscrypt-client."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-conscrypt-client@9.4.53.v20231009-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:bc4d9371-87ab-5a9a-82ce-ce605d6d425c",
      "id": "CVE-2021-34428",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2021-34428 affects version 9.4.53.v20231009-tuxcare.4 of org.eclipse.jetty:jetty-alpn-conscrypt-client."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-conscrypt-client@9.4.53.v20231009-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:dbf112b3-cedd-5417-9ff7-62e4198a2723",
      "id": "CVE-2023-36478",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2023-36478 affects version 9.4.53.v20231009-tuxcare.4 of org.eclipse.jetty:jetty-alpn-conscrypt-client."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-conscrypt-client@9.4.53.v20231009-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:5d397822-94b0-5818-bbbc-5a54b874cab8",
      "id": "CVE-2023-36479",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2023-36479 affects version 9.4.53.v20231009-tuxcare.4 of org.eclipse.jetty:jetty-alpn-conscrypt-client."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-conscrypt-client@9.4.53.v20231009-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:e4dabb0f-771b-5cf6-8cd6-67934a1aa5d8",
      "id": "CVE-2023-40167",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2023-40167 affects version 9.4.53.v20231009-tuxcare.4 of org.eclipse.jetty:jetty-alpn-conscrypt-client."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-conscrypt-client@9.4.53.v20231009-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:13ebb10c-2750-56f3-b44b-a1f0174fde6c",
      "id": "CVE-2023-41900",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2023-41900 affects version 9.4.53.v20231009-tuxcare.4 of org.eclipse.jetty:jetty-alpn-conscrypt-client."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-conscrypt-client@9.4.53.v20231009-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:cd0a33b4-3172-5677-9ade-f4eaa161af3e",
      "id": "CVE-2024-13009",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2024-13009 is fixed in version 9.4.53.v20231009-tuxcare.4 of org.eclipse.jetty:jetty-alpn-conscrypt-client."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-conscrypt-client@9.4.53.v20231009-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:aa444f87-c0bd-5cb5-9d61-92ff8d7655b4",
      "id": "CVE-2024-22201",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2024-22201 is fixed in version 9.4.53.v20231009-tuxcare.4 of org.eclipse.jetty:jetty-alpn-conscrypt-client."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-conscrypt-client@9.4.53.v20231009-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:5800a372-03f6-57b5-a45c-b5ddff5855e0",
      "id": "CVE-2024-6762",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2024-6762 is fixed in version 9.4.53.v20231009-tuxcare.4 of org.eclipse.jetty:jetty-alpn-conscrypt-client."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-conscrypt-client@9.4.53.v20231009-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:a08abf7b-5682-5bbf-8c8a-df5503bd81a6",
      "id": "CVE-2024-6763",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2024-6763 is fixed in version 9.4.53.v20231009-tuxcare.4 of org.eclipse.jetty:jetty-alpn-conscrypt-client."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-conscrypt-client@9.4.53.v20231009-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:5f8afcc5-0f8d-5103-9b91-ed3ad10e42d1",
      "id": "CVE-2024-9823",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2024-9823 is fixed in version 9.4.53.v20231009-tuxcare.4 of org.eclipse.jetty:jetty-alpn-conscrypt-client."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-conscrypt-client@9.4.53.v20231009-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:62e3bea7-2851-57a7-9f0e-9dcf6d0fa105",
      "id": "CVE-2025-11143",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2025-11143 is fixed in version 9.4.53.v20231009-tuxcare.4 of org.eclipse.jetty:jetty-alpn-conscrypt-client."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-conscrypt-client@9.4.53.v20231009-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:19c3d13e-16d6-5215-aad5-1ae0750d3795",
      "id": "CVE-2025-1948",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-1948 affects version 9.4.53.v20231009-tuxcare.4 of org.eclipse.jetty:jetty-alpn-conscrypt-client."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-conscrypt-client@9.4.53.v20231009-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:058219ee-916c-585e-9511-28958f51c230",
      "id": "CVE-2025-5115",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-5115 affects version 9.4.53.v20231009-tuxcare.4 of org.eclipse.jetty:jetty-alpn-conscrypt-client."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-conscrypt-client@9.4.53.v20231009-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:8c5cfed3-4c01-5439-8716-d7860d26ef0d",
      "id": "CVE-2026-1605",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-1605 affects version 9.4.53.v20231009-tuxcare.4 of org.eclipse.jetty:jetty-alpn-conscrypt-client."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-conscrypt-client@9.4.53.v20231009-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:43f6f80e-c8f6-5d50-a780-733ec47f27e3",
      "id": "CVE-2026-2332",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-2332 affects version 9.4.53.v20231009-tuxcare.4 of org.eclipse.jetty:jetty-alpn-conscrypt-client."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-conscrypt-client@9.4.53.v20231009-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:c5205ab3-c807-52ac-909d-124da86ff3b0",
      "id": "CVE-2026-5795",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-5795 affects version 9.4.53.v20231009-tuxcare.4 of org.eclipse.jetty:jetty-alpn-conscrypt-client."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-conscrypt-client@9.4.53.v20231009-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:640066be-e14b-53b1-ac70-87a42c745598",
      "id": "GHSA-58qw-p7qm-5rvh",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 9.4.53.v20231009-tuxcare.4 of org.eclipse.jetty:jetty-alpn-conscrypt-client."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-conscrypt-client@9.4.53.v20231009-tuxcare.4"
        }
      ]
    }
  ],
  "dependencies": [
    {
      "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-conscrypt-client@9.4.53.v20231009-tuxcare.4"
    }
  ]
}