{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:30d86285-074a-5795-8924-1b2b55f9894d", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-annotations@10.0.26-tuxcare.1", "type": "library", "group": "org.eclipse.jetty", "name": "jetty-annotations", "version": "10.0.26-tuxcare.1", "purl": "pkg:maven/org.eclipse.jetty/jetty-annotations@10.0.26-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:be72610c-3154-57c5-81c0-87b7812f4e88", "id": "CVE-2020-25711", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-25711 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-annotations." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-annotations@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6a040464-7366-5c74-a9cd-28b9522fb13e", "id": "CVE-2020-27216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27216 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-annotations." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-annotations@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:77367f54-9cf8-54e8-82b6-70568edaf930", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-annotations." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-annotations@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dc85e1b4-831a-52f8-877d-26e6b43dee98", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-annotations." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-annotations@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c08a1f5e-5734-559c-9433-316bfbd36aac", "id": "CVE-2023-36478", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36478 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-annotations." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-annotations@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3b36c789-0223-50bf-9a86-a019ea7e3c43", "id": "CVE-2023-36479", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36479 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-annotations." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-annotations@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bd2f43c0-8999-5d6b-bdfa-6278462e0348", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-annotations." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-annotations@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ae89c95b-bba3-5af1-815e-f74da91176af", "id": "CVE-2023-41900", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-41900 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-annotations." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-annotations@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6972f48c-948b-55bf-9782-e02e04b74934", "id": "CVE-2024-22201", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22201 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-annotations." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-annotations@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c9f95c71-1296-532a-9bfd-824d669cf659", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-annotations." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-annotations@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:755866c1-929c-503f-bf4c-4c773d85f925", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-annotations." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-annotations@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3d218e4e-b588-5a26-9cb4-263f4ad32fa3", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-annotations." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-annotations@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:37ee61b3-26d9-5fef-afdf-de832eec44be", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-annotations." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-annotations@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f45a7213-93ac-5315-bdaa-52492e52f4ce", "id": "CVE-2025-5115", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-5115 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-annotations." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-annotations@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6a0b02d0-cf65-5de8-ae64-976857e86f25", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-annotations." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-annotations@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b9dd66b9-dfb0-517c-9186-7809417d56cd", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-annotations." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-annotations@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:705d9a56-4637-5da8-8b98-1c04efa28d4c", "id": "CVE-2026-5795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-5795 is fixed in version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-annotations." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-annotations@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8e85e1cf-9bda-5869-a8b0-52d5695967e6", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-annotations." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-annotations@10.0.26-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-annotations@10.0.26-tuxcare.1" } ] }