{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:38535464-5ad1-576d-aa67-d41349d09d9c", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-plus@9.2.16.v20160414-tuxcare.1", "type": "library", "group": "org.eclipse.jetty", "name": "jetty-plus", "version": "9.2.16.v20160414-tuxcare.1", "purl": "pkg:maven/org.eclipse.jetty/jetty-plus@9.2.16.v20160414-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:e6321786-a3e4-5472-a64d-f0372308b85b", "id": "CVE-2017-7656", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7656 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-plus." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:730e226d-0b62-5d39-9179-ba7b47dc68e3", "id": "CVE-2017-7657", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7657 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-plus." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fa289c3f-7081-5a58-8dea-17726c542249", "id": "CVE-2017-7658", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7658 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-plus." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a88c00d0-6188-5bad-9653-570303836bba", "id": "CVE-2017-9735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-9735 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-plus." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4f7e3c5f-57aa-5ee0-8baa-d9b3457ee345", "id": "CVE-2018-12536", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-12536 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-plus." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6ef942c5-5634-54ec-bcc3-b40794d5ed32", "id": "CVE-2018-12538", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12538 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-plus." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d1090b28-6a39-5415-be61-4e87a79f0f9b", "id": "CVE-2018-12545", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12545 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-plus." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a49bd196-f9a1-5c42-8c42-cdc78158d7d4", "id": "CVE-2019-10241", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-10241 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-plus." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1c9779ee-fe64-5b67-aea5-8dcbeb10430a", "id": "CVE-2019-10246", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10246 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-plus." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c255b1b0-ba18-58ad-8d84-00837780aeb8", "id": "CVE-2019-10247", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10247 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-plus." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9cd0df97-e9e3-5c67-9709-6f94ef74d1c8", "id": "CVE-2019-17638", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-17638 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-plus." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6df0a9bb-f467-560b-aa93-c8d95609ba4e", "id": "CVE-2020-27216", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-27216 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-plus." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d03cee57-85ef-53ae-b5ea-12f681e93f1a", "id": "CVE-2020-27218", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27218 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-plus." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c33e6f7f-3f56-549e-8413-3404716836c0", "id": "CVE-2021-28165", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-28165 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-plus." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c809e390-b7cb-56f9-9add-e3ac34e02df2", "id": "CVE-2021-28169", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-28169 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-plus." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ca352e57-07c4-56a0-b071-17b4940abe00", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-plus." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:261c5175-81a3-5854-811f-9987454ba5be", "id": "CVE-2022-2047", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-2047 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-plus." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1f933ced-d3c5-50d7-befe-208e55b0e412", "id": "CVE-2022-2048", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-2048 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-plus." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c1002572-317a-59cd-a1d2-421e8c4fb7d2", "id": "CVE-2023-26048", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26048 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-plus." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:48b282ca-76f7-5565-a3a5-bf2edd835470", "id": "CVE-2023-26049", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26049 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-plus." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1351e4db-263c-55b6-ac81-2eab90717106", "id": "CVE-2023-36479", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-36479 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-plus." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:06de1cbb-1270-59ae-b940-153a4a7faa86", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-plus." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3a3235f3-9dde-5ba2-853e-81bbcc047973", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-plus." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cf22faf9-06a7-5f7e-b92f-fdb89319f87c", "id": "CVE-2024-13009", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-13009 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-plus." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:999712e3-075f-5136-b905-627c12c185fe", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-plus." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d66d898e-f9d5-56a2-90d1-b8a290db3c3c", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-plus." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cd8b45b2-381b-5621-b5b3-ba7da0637d7d", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-plus." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4adbc106-cba1-5b70-b011-e419e95bf574", "id": "CVE-2024-9823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-9823 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-plus." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6c024774-099f-5e50-9c2b-5d5c490ca389", "id": "CVE-2025-11143", "analysis": { "state": "not_affected", "detail": "Vulnerability CVE-2025-11143 does not affect version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-plus. Jetty version 9.2.16.v20160414 is not affected to CVE-2025-11143 according to advisories." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8376417e-14c6-58b5-a127-22de9ff78402", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-plus." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cb8827ed-07ac-5085-87f3-f133e912c197", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-plus." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f9e0be83-666a-5c5f-a374-dc29154b0eb4", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-plus." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:45d0cb03-133f-55ad-979c-2d583c747241", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "resolved", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-plus." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@9.2.16.v20160414-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-plus@9.2.16.v20160414-tuxcare.1" } ] }