{
  "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json",
  "bomFormat": "CycloneDX",
  "specVersion": "1.6",
  "serialNumber": "urn:uuid:e5784bb8-b334-5089-8927-8a71236da980",
  "version": 1,
  "metadata": {
    "tools": [
      {
        "name": "tuxcare-vex-generator",
        "version": "1.0.0"
      }
    ]
  },
  "components": [
    {
      "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-plus@10.0.26-tuxcare.1",
      "type": "library",
      "group": "org.eclipse.jetty",
      "name": "jetty-plus",
      "version": "10.0.26-tuxcare.1",
      "purl": "pkg:maven/org.eclipse.jetty/jetty-plus@10.0.26-tuxcare.1"
    }
  ],
  "vulnerabilities": [
    {
      "bom-ref": "urn:uuid:2cf853fe-3dee-5785-9016-acc59a8183ae",
      "id": "CVE-2020-25711",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2020-25711 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-plus."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@10.0.26-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:b7144ef5-e59b-57d8-b76e-d4ae66b602c7",
      "id": "CVE-2020-27216",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2020-27216 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-plus."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@10.0.26-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:71917875-21db-5980-bb11-a7e315bd3906",
      "id": "CVE-2021-28169",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2021-28169 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-plus."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@10.0.26-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:75aee3f3-3528-5250-85de-fd18c7bd20c0",
      "id": "CVE-2021-34428",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2021-34428 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-plus."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@10.0.26-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:53fb7079-6a5e-5b85-ab17-3ef905586de5",
      "id": "CVE-2023-36478",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2023-36478 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-plus."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@10.0.26-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:455b4a74-2354-5341-8cd0-66e3266e141c",
      "id": "CVE-2023-36479",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2023-36479 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-plus."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@10.0.26-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:0f2c60cf-6e00-51ac-868c-fbe9573742fc",
      "id": "CVE-2023-40167",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2023-40167 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-plus."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@10.0.26-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:35746702-e084-51d9-a0f8-52d6f326c22c",
      "id": "CVE-2023-41900",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2023-41900 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-plus."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@10.0.26-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:454f80d2-f062-586f-af25-a55e72e740f6",
      "id": "CVE-2024-22201",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2024-22201 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-plus."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@10.0.26-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:691832f4-9e3d-5c17-b280-6ad783d57bb8",
      "id": "CVE-2024-6762",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2024-6762 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-plus."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@10.0.26-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:90457fab-073f-582f-bfd9-b7fd5867aa94",
      "id": "CVE-2024-6763",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2024-6763 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-plus."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@10.0.26-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:33b4ae47-eed4-584a-8efd-ae7df1fe5c87",
      "id": "CVE-2024-8184",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2024-8184 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-plus."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@10.0.26-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:dce5a982-97b6-5ed7-9f0a-095a6763037d",
      "id": "CVE-2025-11143",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-11143 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-plus."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@10.0.26-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:7ca7221b-da6c-52df-a0b2-ca12623bccbb",
      "id": "CVE-2025-5115",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-5115 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-plus."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@10.0.26-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:0b575bc6-81b4-5f66-8106-7bf03fb32649",
      "id": "CVE-2026-1605",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-1605 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-plus."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@10.0.26-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:cde1a021-ea13-5b2c-a163-b0ea41ee6de3",
      "id": "CVE-2026-2332",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-2332 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-plus."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@10.0.26-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:b12f6d11-06b8-5ee6-b239-3ac0da5de6fd",
      "id": "CVE-2026-5795",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2026-5795 is fixed in version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-plus."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@10.0.26-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:973f4d81-9b3a-5c67-98a9-78af4bb858e3",
      "id": "GHSA-58qw-p7qm-5rvh",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-plus."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@10.0.26-tuxcare.1"
        }
      ]
    }
  ],
  "dependencies": [
    {
      "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@10.0.26-tuxcare.1"
    }
  ]
}