{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:484d79ef-4141-583a-96b4-575a3c3e425d", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-java-client@9.4.53.v20231009-tuxcare.5", "type": "library", "group": "org.eclipse.jetty", "name": "jetty-alpn-java-client", "version": "9.4.53.v20231009-tuxcare.5", "purl": "pkg:maven/org.eclipse.jetty/jetty-alpn-java-client@9.4.53.v20231009-tuxcare.5" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:995ec59f-7888-567b-9238-82a9aece9c50", "id": "CVE-2020-25711", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-25711 affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty:jetty-alpn-java-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-java-client@9.4.53.v20231009-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:797d831d-dca7-5254-8258-fa3fed7f4817", "id": "CVE-2020-27216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27216 affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty:jetty-alpn-java-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-java-client@9.4.53.v20231009-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:68515af4-f6bd-54b9-b4f9-f42f93fc2e4e", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty:jetty-alpn-java-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-java-client@9.4.53.v20231009-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:f97d92fd-e184-5230-82f3-e1224a247ca7", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty:jetty-alpn-java-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-java-client@9.4.53.v20231009-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:3faeb7b3-aab2-5685-9cd3-044741f0c04a", "id": "CVE-2023-36478", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36478 affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty:jetty-alpn-java-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-java-client@9.4.53.v20231009-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:615f7c2a-11d4-538f-8f54-b35b2b46b1f8", "id": "CVE-2023-36479", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36479 affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty:jetty-alpn-java-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-java-client@9.4.53.v20231009-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:9c1d72ff-7a70-5b1b-ba0f-5f3acdda3cb8", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty:jetty-alpn-java-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-java-client@9.4.53.v20231009-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:4fa041c8-0ea3-57d2-af8a-bd5acf4d1a1b", "id": "CVE-2023-41900", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-41900 affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty:jetty-alpn-java-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-java-client@9.4.53.v20231009-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:7c32b716-904b-5148-beb3-7eee7ba73faa", "id": "CVE-2024-13009", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-13009 is fixed in version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty:jetty-alpn-java-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-java-client@9.4.53.v20231009-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:688ebb6b-0eb7-51c2-94f0-c5c00d69b973", "id": "CVE-2024-22201", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22201 is fixed in version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty:jetty-alpn-java-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-java-client@9.4.53.v20231009-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:0b8f419a-db85-54a9-8c00-1acfa0312cee", "id": "CVE-2024-6762", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-6762 is fixed in version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty:jetty-alpn-java-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-java-client@9.4.53.v20231009-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:dd79a124-49a6-5e97-afbb-f32ea4d1652a", "id": "CVE-2024-6763", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-6763 is fixed in version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty:jetty-alpn-java-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-java-client@9.4.53.v20231009-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:79b7d53c-e6d8-569a-8d26-106c5f31c5cf", "id": "CVE-2024-9823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-9823 is fixed in version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty:jetty-alpn-java-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-java-client@9.4.53.v20231009-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:074b1e17-4592-5083-bdbf-8639aa27daa9", "id": "CVE-2025-11143", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-11143 is fixed in version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty:jetty-alpn-java-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-java-client@9.4.53.v20231009-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:8045066a-38a0-5d2c-a09b-6aae68fe1428", "id": "CVE-2025-1948", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-1948 affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty:jetty-alpn-java-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-java-client@9.4.53.v20231009-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:040b9949-c1da-58b3-a254-7c26938aefa6", "id": "CVE-2025-5115", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-5115 affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty:jetty-alpn-java-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-java-client@9.4.53.v20231009-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:3add5105-0f9f-517b-8aa9-5e2c22643fb4", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty:jetty-alpn-java-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-java-client@9.4.53.v20231009-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:df6dd026-45ff-562b-8c4c-a36e8b794a31", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty:jetty-alpn-java-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-java-client@9.4.53.v20231009-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:b3d8eb4f-6c9e-504b-9426-1e7ad8b6c0c3", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty:jetty-alpn-java-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-java-client@9.4.53.v20231009-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:d1a42b4c-a1b0-5f01-8775-dfe828a41c9d", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty:jetty-alpn-java-client." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-java-client@9.4.53.v20231009-tuxcare.5" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-alpn-java-client@9.4.53.v20231009-tuxcare.5" } ] }