{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:fda22dd8-01d3-5d2c-b120-fb44f043f937", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.48.v20220622-tuxcare.2", "type": "library", "group": "org.eclipse.jetty", "name": "jetty-ant", "version": "9.4.48.v20220622-tuxcare.2", "purl": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.48.v20220622-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:4d9a8cfa-1d11-5442-918a-b73e322c20dd", "id": "CVE-2020-27216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27216 affects version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:19d4cab1-b133-5e36-9740-8326f3435641", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:dce5637e-8b76-5d6f-84a4-0c506727b9fc", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9d167492-715e-575a-822a-8deee5445330", "id": "CVE-2023-26048", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26048 is fixed in version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c9ebf1fa-a8c7-5e85-95aa-813c77dc9632", "id": "CVE-2023-26049", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26049 is fixed in version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:24ceae64-ae9c-5b12-a506-e079e6729db6", "id": "CVE-2023-36478", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36478 affects version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8131eec2-3840-51c0-a6cb-756e1c6e3651", "id": "CVE-2023-36479", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-36479 is fixed in version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e1f15d93-4f61-5f35-8027-4d93f2382085", "id": "CVE-2023-40167", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-40167 is fixed in version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0d84ccf2-a762-58c9-bc74-36c3f9cada11", "id": "CVE-2023-41900", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-41900 is fixed in version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0019f259-4dd7-54f6-98e5-a10198b57ad7", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5d66d129-98ad-58d5-8c0d-5f307ef88036", "id": "CVE-2024-13009", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-13009 is fixed in version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:53a19f81-86c9-55b5-8c47-508217b4d592", "id": "CVE-2024-22201", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22201 is fixed in version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2a79231e-702f-578d-af16-364239c3f7d4", "id": "CVE-2024-6762", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-6762 is fixed in version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:dce2baf6-ec50-53f5-a4c6-8f358bd3aa8b", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1d1f02cc-7fe8-5def-8c63-aed588315747", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:687bb7a7-242b-58f1-961b-1620439bb8c9", "id": "CVE-2024-9823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-9823 is fixed in version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f592bc5e-e497-5221-a652-b3c474bb8be2", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4d931136-82d4-58ed-86b2-ba63f27bb393", "id": "CVE-2025-5115", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-5115 is fixed in version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:df08a488-cc9e-5feb-8eaf-13592e88e9c7", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:60583125-94c7-504e-bde4-d42853093831", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1c4860de-696e-50d9-a898-c4bcec3318a2", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "resolved", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh is fixed in version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.48.v20220622-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.48.v20220622-tuxcare.2" } ] }