{
  "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json",
  "bomFormat": "CycloneDX",
  "specVersion": "1.6",
  "serialNumber": "urn:uuid:01228d03-f59f-51ff-9a88-a9141502a7a6",
  "version": 1,
  "metadata": {
    "tools": [
      {
        "name": "tuxcare-vex-generator",
        "version": "1.0.0"
      }
    ]
  },
  "components": [
    {
      "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-bom@11.0.19-tuxcare.2",
      "type": "library",
      "group": "org.eclipse.jetty",
      "name": "jetty-bom",
      "version": "11.0.19-tuxcare.2",
      "purl": "pkg:maven/org.eclipse.jetty/jetty-bom@11.0.19-tuxcare.2"
    }
  ],
  "vulnerabilities": [
    {
      "bom-ref": "urn:uuid:a504dc9a-bf9f-53ca-8237-6cff650e4c32",
      "id": "CVE-2023-36479",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2023-36479 affects version 11.0.19-tuxcare.2 of org.eclipse.jetty:jetty-bom."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-bom@11.0.19-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:52f226f5-676f-518a-b651-c5c12b6d6da6",
      "id": "CVE-2024-22201",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2024-22201 is fixed in version 11.0.19-tuxcare.2 of org.eclipse.jetty:jetty-bom."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-bom@11.0.19-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:447566cd-7a95-5b4c-953f-26b0ffcb9b71",
      "id": "CVE-2024-6762",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2024-6762 affects version 11.0.19-tuxcare.2 of org.eclipse.jetty:jetty-bom."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-bom@11.0.19-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:c7e0a3ef-16bb-59cf-b305-ccf9fafeaf56",
      "id": "CVE-2024-6763",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2024-6763 affects version 11.0.19-tuxcare.2 of org.eclipse.jetty:jetty-bom."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-bom@11.0.19-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:83a16d5a-effb-5f0e-9205-2a83383c54f9",
      "id": "CVE-2024-8184",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2024-8184 affects version 11.0.19-tuxcare.2 of org.eclipse.jetty:jetty-bom."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-bom@11.0.19-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:22152903-24f2-5536-99da-5c54d5109c53",
      "id": "CVE-2025-11143",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-11143 affects version 11.0.19-tuxcare.2 of org.eclipse.jetty:jetty-bom."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-bom@11.0.19-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:d493b4df-da55-5706-b2c4-3d9af99e9a57",
      "id": "CVE-2025-5115",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-5115 affects version 11.0.19-tuxcare.2 of org.eclipse.jetty:jetty-bom."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-bom@11.0.19-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:6f05d3f6-e5e0-5fae-b50f-9725c913e25d",
      "id": "CVE-2026-1605",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-1605 affects version 11.0.19-tuxcare.2 of org.eclipse.jetty:jetty-bom."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-bom@11.0.19-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:ba61287e-e07e-5ce0-9fc3-66c9422bbc84",
      "id": "CVE-2026-2332",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-2332 affects version 11.0.19-tuxcare.2 of org.eclipse.jetty:jetty-bom."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-bom@11.0.19-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:ce35f595-00ba-5c9d-93d5-69f954b470b8",
      "id": "CVE-2026-5795",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-5795 affects version 11.0.19-tuxcare.2 of org.eclipse.jetty:jetty-bom."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-bom@11.0.19-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:9768b546-93fc-5f46-aeca-21d723073758",
      "id": "GHSA-58qw-p7qm-5rvh",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 11.0.19-tuxcare.2 of org.eclipse.jetty:jetty-bom."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-bom@11.0.19-tuxcare.2"
        }
      ]
    }
  ],
  "dependencies": [
    {
      "ref": "pkg:maven/org.eclipse.jetty/jetty-bom@11.0.19-tuxcare.2"
    }
  ]
}