{
  "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json",
  "bomFormat": "CycloneDX",
  "specVersion": "1.6",
  "serialNumber": "urn:uuid:2ea49669-4692-5a25-9daa-8b7cdea7eead",
  "version": 1,
  "metadata": {
    "tools": [
      {
        "name": "tuxcare-vex-generator",
        "version": "1.0.0"
      }
    ]
  },
  "components": [
    {
      "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.58.v20250814-tuxcare.2",
      "type": "library",
      "group": "org.eclipse.jetty",
      "name": "jetty-client",
      "version": "9.4.58.v20250814-tuxcare.2",
      "purl": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.58.v20250814-tuxcare.2"
    }
  ],
  "vulnerabilities": [
    {
      "bom-ref": "urn:uuid:3d101590-ca03-5ea5-9e9e-34bf0f0d43e2",
      "id": "CVE-2020-27216",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2020-27216 affects version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty:jetty-client."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.58.v20250814-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:a96722ef-f594-5420-9cda-4637f8395d66",
      "id": "CVE-2021-28169",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2021-28169 affects version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty:jetty-client."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.58.v20250814-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:13a4ba38-ff05-5e04-9158-538469cce531",
      "id": "CVE-2021-34428",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2021-34428 affects version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty:jetty-client."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.58.v20250814-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:62f030c8-78cd-50f3-9012-cd6d8736280b",
      "id": "CVE-2023-36478",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2023-36478 affects version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty:jetty-client."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.58.v20250814-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:7a7d3e6e-06b6-5bb1-90dd-98aec78a25f4",
      "id": "CVE-2023-36479",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2023-36479 affects version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty:jetty-client."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.58.v20250814-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:9ac5b9db-df45-5609-878d-bc60ed3986a2",
      "id": "CVE-2023-40167",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2023-40167 affects version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty:jetty-client."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.58.v20250814-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:ff50fae9-77e7-5a42-a1a5-e340f8cd07dc",
      "id": "CVE-2023-41900",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2023-41900 affects version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty:jetty-client."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.58.v20250814-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:46f607b1-e34a-5acc-b5e2-b3de4f3697c2",
      "id": "CVE-2024-22201",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2024-22201 affects version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty:jetty-client."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.58.v20250814-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:4879efec-2b7f-53f5-9c6f-2fa1d168e2de",
      "id": "CVE-2024-6762",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2024-6762 affects version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty:jetty-client."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.58.v20250814-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:da95f3d6-25cb-507b-a155-ed8d8eeca218",
      "id": "CVE-2024-6763",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2024-6763 affects version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty:jetty-client."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.58.v20250814-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:c0c2a3ca-5dca-5d26-ad7a-b71e07c724c0",
      "id": "CVE-2024-8184",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2024-8184 affects version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty:jetty-client."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.58.v20250814-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:d4ce7ec9-4a57-54b7-9e81-5f047d27f7dc",
      "id": "CVE-2025-11143",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-11143 affects version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty:jetty-client."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.58.v20250814-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:06e29d33-6786-53e1-869b-923dbef82ae9",
      "id": "CVE-2025-5115",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-5115 affects version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty:jetty-client."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.58.v20250814-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:afd09915-4fb5-5c7f-8687-8e98c2064db3",
      "id": "CVE-2026-1605",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-1605 affects version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty:jetty-client."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.58.v20250814-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:6ebfba03-104f-54dc-9123-40b6c46e4227",
      "id": "CVE-2026-2332",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-2332 affects version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty:jetty-client."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.58.v20250814-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:423b5217-3110-5208-b54f-8b7732ab96a2",
      "id": "CVE-2026-5795",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2026-5795 is fixed in version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty:jetty-client."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.58.v20250814-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:d243f054-0774-53ef-8085-b1e98a8d06b9",
      "id": "GHSA-58qw-p7qm-5rvh",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty:jetty-client."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.58.v20250814-tuxcare.2"
        }
      ]
    }
  ],
  "dependencies": [
    {
      "ref": "pkg:maven/org.eclipse.jetty/jetty-client@9.4.58.v20250814-tuxcare.2"
    }
  ]
}