{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:9deb5278-0345-51a9-b9bf-cce547dcff18", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-cdi@11.0.26-tuxcare.1", "type": "library", "group": "org.eclipse.jetty", "name": "jetty-cdi", "version": "11.0.26-tuxcare.1", "purl": "pkg:maven/org.eclipse.jetty/jetty-cdi@11.0.26-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:39999ac4-4ff9-5344-816c-7d93e7ba0968", "id": "CVE-2023-36479", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36479 affects version 11.0.26-tuxcare.1 of org.eclipse.jetty:jetty-cdi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-cdi@11.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:570ef447-548b-5942-8c3e-e7ce82f7de15", "id": "CVE-2024-22201", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22201 affects version 11.0.26-tuxcare.1 of org.eclipse.jetty:jetty-cdi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-cdi@11.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:449d3ab6-f952-505b-8e73-e0b6297db421", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 11.0.26-tuxcare.1 of org.eclipse.jetty:jetty-cdi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-cdi@11.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7256f7c8-8058-5db7-8d6b-70077ce3cb49", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 11.0.26-tuxcare.1 of org.eclipse.jetty:jetty-cdi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-cdi@11.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9a284c74-e087-5ed0-ab4d-5e5bca3173c7", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 11.0.26-tuxcare.1 of org.eclipse.jetty:jetty-cdi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-cdi@11.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6dc5d18c-d2e5-56af-ba39-ac9fad1c0d3f", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 11.0.26-tuxcare.1 of org.eclipse.jetty:jetty-cdi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-cdi@11.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2deb6678-f1e0-5683-897a-df3abccd43fa", "id": "CVE-2025-5115", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-5115 affects version 11.0.26-tuxcare.1 of org.eclipse.jetty:jetty-cdi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-cdi@11.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7e8a9c49-7fd6-5807-9368-30cc2ac5ca87", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 11.0.26-tuxcare.1 of org.eclipse.jetty:jetty-cdi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-cdi@11.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1bf7bc51-ac57-5446-af1f-57a708b7973d", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 11.0.26-tuxcare.1 of org.eclipse.jetty:jetty-cdi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-cdi@11.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:85c5aef6-67b6-5d49-b679-260dbb8ec161", "id": "CVE-2026-5795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-5795 is fixed in version 11.0.26-tuxcare.1 of org.eclipse.jetty:jetty-cdi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-cdi@11.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c45b364d-b939-5297-ad97-8b03cbd73190", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 11.0.26-tuxcare.1 of org.eclipse.jetty:jetty-cdi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-cdi@11.0.26-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-cdi@11.0.26-tuxcare.1" } ] }