{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:adcc3ce4-62d8-5563-bd11-69cd0340ed92", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-jspc-maven-plugin@10.0.26-tuxcare.1", "type": "library", "group": "org.eclipse.jetty", "name": "jetty-jspc-maven-plugin", "version": "10.0.26-tuxcare.1", "purl": "pkg:maven/org.eclipse.jetty/jetty-jspc-maven-plugin@10.0.26-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:7e776939-98ec-515b-9305-09f3961cbd72", "id": "CVE-2020-25711", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-25711 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-jspc-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jspc-maven-plugin@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:10490b74-4b34-562d-b44a-171a22b1cd8e", "id": "CVE-2020-27216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27216 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-jspc-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jspc-maven-plugin@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:975086bd-541c-5f78-bf33-37dbe3b0e8bc", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-jspc-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jspc-maven-plugin@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:02436a62-aa78-549f-b224-074f1c2ddb17", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-jspc-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jspc-maven-plugin@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:24105b57-07d6-5d94-bc1e-c2a5ccc14bcf", "id": "CVE-2023-36478", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36478 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-jspc-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jspc-maven-plugin@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0d42dc75-3b81-5cc6-912a-0e3fee0abdee", "id": "CVE-2023-36479", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36479 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-jspc-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jspc-maven-plugin@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:552cb27d-6c86-5296-8de6-0979cf1ff293", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-jspc-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jspc-maven-plugin@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9ad0d215-b730-5810-8e2d-a3bce50b9309", "id": "CVE-2023-41900", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-41900 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-jspc-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jspc-maven-plugin@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3acf53ec-36cf-50d1-a2c4-8bb87fac2c21", "id": "CVE-2024-22201", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22201 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-jspc-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jspc-maven-plugin@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7cd09db7-9b2d-51dc-b2a3-e2e2492fcba8", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-jspc-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jspc-maven-plugin@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:83362294-31ea-544a-804d-8c75c1a38936", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-jspc-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jspc-maven-plugin@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f8e84bfc-a85e-5cf3-b89b-03c878486776", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-jspc-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jspc-maven-plugin@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6508e05c-e0d7-593c-a95a-23186f7b51b1", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-jspc-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jspc-maven-plugin@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:09437a93-6600-55f7-9e88-f0123305d5a4", "id": "CVE-2025-5115", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-5115 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-jspc-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jspc-maven-plugin@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:eef72cfa-88b2-5535-b166-e39c8d99f2b1", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-jspc-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jspc-maven-plugin@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c8c41c7a-9227-5460-bbe3-43e1845847db", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-jspc-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jspc-maven-plugin@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:64ab405e-40ee-556d-899e-a9f8ba61b4b6", "id": "CVE-2026-5795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-5795 is fixed in version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-jspc-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jspc-maven-plugin@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:64154b80-7266-517e-8a3b-41f91b3e8042", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-jspc-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jspc-maven-plugin@10.0.26-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-jspc-maven-plugin@10.0.26-tuxcare.1" } ] }