{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:6a30087e-1ed2-5d34-b586-ae8713d265a0", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-project@9.4.53.v20231009-tuxcare.5", "type": "library", "group": "org.eclipse.jetty", "name": "jetty-project", "version": "9.4.53.v20231009-tuxcare.5", "purl": "pkg:maven/org.eclipse.jetty/jetty-project@9.4.53.v20231009-tuxcare.5" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:ce9938a9-ac81-5a4a-b668-66f3f0e4127f", "id": "CVE-2020-25711", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-25711 affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@9.4.53.v20231009-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:b64b98fa-3f71-5c62-a748-935ff7984d13", "id": "CVE-2020-27216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27216 affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@9.4.53.v20231009-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:d1ceb7c0-1941-5432-8d4f-d136f7b56287", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@9.4.53.v20231009-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:91150095-198a-579a-b4a8-e909093f452e", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@9.4.53.v20231009-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:7d8ebcde-b36c-5fb4-9d91-691c2f5aaa2d", "id": "CVE-2023-36478", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36478 affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@9.4.53.v20231009-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:1d777c07-7937-5e4e-b56b-80997c4cc922", "id": "CVE-2023-36479", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36479 affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@9.4.53.v20231009-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:642fb31f-ea71-5929-8e8a-89e6e884dbd5", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@9.4.53.v20231009-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:63a4b491-37ee-5d3a-bb21-bf5dc14f9023", "id": "CVE-2023-41900", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-41900 affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@9.4.53.v20231009-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:20926f2d-d9ee-52e6-90ba-5006625c8629", "id": "CVE-2024-13009", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-13009 is fixed in version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@9.4.53.v20231009-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:17dc8a45-eb15-5542-8b0b-27c8d3865d44", "id": "CVE-2024-22201", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22201 is fixed in version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@9.4.53.v20231009-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:852092a3-d3d1-53cb-a66d-4b8dae14bd4a", "id": "CVE-2024-6762", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-6762 is fixed in version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@9.4.53.v20231009-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:866cb336-172d-5d77-a68a-abd1edf7b2e5", "id": "CVE-2024-6763", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-6763 is fixed in version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@9.4.53.v20231009-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:e6f2ddae-9d7b-5e8e-8a95-745bda3f6b74", "id": "CVE-2024-9823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-9823 is fixed in version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@9.4.53.v20231009-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:bc58359f-82ed-552f-942b-b2790de63530", "id": "CVE-2025-11143", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-11143 is fixed in version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@9.4.53.v20231009-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:0b58a986-c614-569d-af61-7e0cdc2c98e4", "id": "CVE-2025-1948", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-1948 affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@9.4.53.v20231009-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:25c02e0e-b0a5-556c-be6d-db0fe6492f20", "id": "CVE-2025-5115", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-5115 affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@9.4.53.v20231009-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:eba7a0ae-3e50-52dd-bfe7-a0f9ce1764af", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@9.4.53.v20231009-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:d2836884-d53b-5916-8faa-b2d5e4c04b2f", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@9.4.53.v20231009-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:d93ca261-6651-5fdd-beb1-33794b4c4aaf", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@9.4.53.v20231009-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:8d5bce98-84d7-5a9b-8402-637f3052e281", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty:jetty-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@9.4.53.v20231009-tuxcare.5" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-project@9.4.53.v20231009-tuxcare.5" } ] }