{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:030abbea-2530-54ad-be85-b16f3faecde9", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-continuation@9.4.58.v20250814-tuxcare.2", "type": "library", "group": "org.eclipse.jetty", "name": "jetty-continuation", "version": "9.4.58.v20250814-tuxcare.2", "purl": "pkg:maven/org.eclipse.jetty/jetty-continuation@9.4.58.v20250814-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:c0d75292-0028-5a0b-be3e-35e101a32109", "id": "CVE-2020-27216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27216 affects version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty:jetty-continuation." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-continuation@9.4.58.v20250814-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f05fac8d-4d4c-567d-a6cd-c0a65a99337a", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty:jetty-continuation." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-continuation@9.4.58.v20250814-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f9a48eeb-5019-510d-95e5-00284bfdc7bd", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty:jetty-continuation." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-continuation@9.4.58.v20250814-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6937b6af-d746-5010-ad9f-b1957b53de77", "id": "CVE-2023-36478", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36478 affects version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty:jetty-continuation." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-continuation@9.4.58.v20250814-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ab09c0f2-8217-518d-b37a-407983bb5a06", "id": "CVE-2023-36479", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36479 affects version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty:jetty-continuation." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-continuation@9.4.58.v20250814-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a2eef1ae-da12-5c5d-b937-c235a2560800", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty:jetty-continuation." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-continuation@9.4.58.v20250814-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9494e206-20ca-5435-b6df-9aa51f21b337", "id": "CVE-2023-41900", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-41900 affects version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty:jetty-continuation." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-continuation@9.4.58.v20250814-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7b93add2-dde3-5d1a-8e28-8dd47b0d5f16", "id": "CVE-2024-22201", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22201 affects version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty:jetty-continuation." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-continuation@9.4.58.v20250814-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:94aa2409-6cd1-5f9b-bb53-32b1b41e5010", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty:jetty-continuation." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-continuation@9.4.58.v20250814-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f9fdeeb2-fcf8-5b88-ad0a-7cd3bd3a2369", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty:jetty-continuation." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-continuation@9.4.58.v20250814-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:750e695b-0657-5710-a371-b6cb6509d7d4", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty:jetty-continuation." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-continuation@9.4.58.v20250814-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:47eefb46-3f04-581c-8e25-efdbbbf70568", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty:jetty-continuation." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-continuation@9.4.58.v20250814-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:14e91a7a-4ee3-5437-a26e-50d0be189109", "id": "CVE-2025-5115", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-5115 affects version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty:jetty-continuation." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-continuation@9.4.58.v20250814-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b6657caf-ce4f-553a-b2a1-88e3f90584eb", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty:jetty-continuation." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-continuation@9.4.58.v20250814-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:69e82099-ffd2-5c05-985d-17a1b6401956", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty:jetty-continuation." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-continuation@9.4.58.v20250814-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3cf9aa76-e469-5708-85c1-99281d509f29", "id": "CVE-2026-5795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-5795 is fixed in version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty:jetty-continuation." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-continuation@9.4.58.v20250814-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7a4f4617-05fe-50d9-9e25-32af240352de", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty:jetty-continuation." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-continuation@9.4.58.v20250814-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-continuation@9.4.58.v20250814-tuxcare.2" } ] }