{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:3e26541b-f9ca-5ecb-a522-562e63ef57c1", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@9.2.16.v20160414-tuxcare.1", "type": "library", "group": "org.eclipse.jetty", "name": "jetty-jaspi", "version": "9.2.16.v20160414-tuxcare.1", "purl": "pkg:maven/org.eclipse.jetty/jetty-jaspi@9.2.16.v20160414-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:6f2ea305-59a3-59e8-a55b-fed04098f4e2", "id": "CVE-2017-7656", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7656 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:26e2de3b-418b-5e4a-b54e-0b645c8c27cb", "id": "CVE-2017-7657", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7657 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9648823d-31d5-50c4-aa81-a89112421fd7", "id": "CVE-2017-7658", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7658 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:91ec64d3-67e6-5fb4-930d-6a8a4d7bc5f0", "id": "CVE-2017-9735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-9735 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:645627f5-444e-50a7-a4cf-c70ee95204c6", "id": "CVE-2018-12536", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-12536 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:eeefc7ab-3e32-52a8-a562-511bb987d800", "id": "CVE-2018-12538", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12538 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f61af03e-6744-5d60-acf5-581b28f9b04f", "id": "CVE-2018-12545", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12545 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4c10fced-d7b5-5087-9663-10ffa77161d2", "id": "CVE-2019-10241", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-10241 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:028257c4-d0bb-5607-bbdf-af5e2e996acb", "id": "CVE-2019-10246", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10246 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5c00fff8-1f1d-5f01-82bc-ee682b4dd359", "id": "CVE-2019-10247", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10247 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:293d4fae-c25f-555e-967c-f4df729034c7", "id": "CVE-2019-17638", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-17638 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bc24a580-f346-5f89-bc92-dddf5778604c", "id": "CVE-2020-27216", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-27216 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:43c09907-11f3-55fd-b955-cac368be3a41", "id": "CVE-2020-27218", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27218 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:87a8da59-65e0-5307-9cf9-7c7f5b8203a6", "id": "CVE-2021-28165", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-28165 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:14cf6402-54e6-5bc8-8c84-b548b2ed4179", "id": "CVE-2021-28169", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-28169 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5ad190aa-885a-5c4c-b0cf-81aec289447d", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:778bd8b4-24f1-5d7e-b3d4-c5e5b56bf292", "id": "CVE-2022-2047", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-2047 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:05931db4-73f1-56d1-8c8e-ad581b4a3b99", "id": "CVE-2022-2048", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-2048 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6d99dfb7-9b05-5cc3-aea0-9c88c9c7d68e", "id": "CVE-2023-26048", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26048 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9f95e544-a04e-51a7-a9d6-33a5cfcdbad8", "id": "CVE-2023-26049", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26049 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ad70ab4e-5e32-5c76-bbc7-577226c5cee7", "id": "CVE-2023-36479", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-36479 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0ad64924-84e9-50b2-9a9e-0b4c208e7205", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8cd90a9c-1321-555d-913b-ca5c39c340b1", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1a9c3f47-5663-5ea3-9db2-eca73cff1dfe", "id": "CVE-2024-13009", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-13009 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:67793755-c893-5f54-94ea-a20fde4cdfc9", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:93f3732e-6d7e-5c60-a2e7-755c61d2eb5e", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e06a95bc-0c98-54bb-8d6c-bdb1f61053ed", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:41708827-9237-58c3-a491-4b531e77b63b", "id": "CVE-2024-9823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-9823 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e6821886-20a8-56fa-96b8-7c27598c4d93", "id": "CVE-2025-11143", "analysis": { "state": "not_affected", "detail": "Vulnerability CVE-2025-11143 does not affect version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-jaspi. Jetty version 9.2.16.v20160414 is not affected to CVE-2025-11143 according to advisories." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1c8af5ca-1356-53f0-a3f5-af28c509e1ed", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:830a62d2-828a-5733-97b9-71b77c61f88d", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:270cc9c3-5800-5e07-95db-9d375d5fd63b", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:de1b6c13-d6bb-5251-8504-008454d9a433", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "resolved", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-jaspi." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@9.2.16.v20160414-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jaspi@9.2.16.v20160414-tuxcare.1" } ] }