{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:1f5311b2-bef4-5d37-84cd-8d2db5c26a6a", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-proxy@9.4.48.v20220622-tuxcare.3", "type": "library", "group": "org.eclipse.jetty", "name": "jetty-proxy", "version": "9.4.48.v20220622-tuxcare.3", "purl": "pkg:maven/org.eclipse.jetty/jetty-proxy@9.4.48.v20220622-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:f488567e-664d-53ba-b94e-b1e473949275", "id": "CVE-2020-27216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27216 affects version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:jetty-proxy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-proxy@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ae90291c-0e78-51c5-bbf2-0d332daeac82", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:jetty-proxy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-proxy@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ff318ce3-e3c9-5411-ae92-656ad3ad9548", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:jetty-proxy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-proxy@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d101832b-a39a-5029-8d83-1e18565ac9a3", "id": "CVE-2023-26048", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26048 is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:jetty-proxy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-proxy@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ea217429-1de5-55f3-bfe4-a040e0bfb015", "id": "CVE-2023-26049", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26049 is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:jetty-proxy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-proxy@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4b1ef709-f245-54ba-95fc-a662fb0be5d9", "id": "CVE-2023-36478", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36478 affects version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:jetty-proxy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-proxy@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:93dc210a-e07e-5ad2-8365-c2b64365a860", "id": "CVE-2023-36479", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-36479 is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:jetty-proxy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-proxy@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6d8b093a-05e0-5fbb-9f99-46c30f3377cd", "id": "CVE-2023-40167", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-40167 is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:jetty-proxy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-proxy@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:856a8791-4ec1-5730-bfc4-9b9591a252c5", "id": "CVE-2023-41900", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-41900 is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:jetty-proxy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-proxy@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:31ddd82b-46cf-5e60-87ec-e520347be6aa", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:jetty-proxy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-proxy@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:54c8231e-b388-5d30-a311-b29b1fd2d02e", "id": "CVE-2024-13009", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-13009 is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:jetty-proxy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-proxy@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b0c4702e-14ad-5b45-912f-e683b32df241", "id": "CVE-2024-22201", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22201 is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:jetty-proxy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-proxy@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:72cbde0b-1e62-582b-873f-2cdc987b683d", "id": "CVE-2024-6762", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-6762 is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:jetty-proxy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-proxy@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d74b3629-72dc-5da2-a41a-ab1f9f9b30a5", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:jetty-proxy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-proxy@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6e037815-b789-54a6-9d02-c3d0647d01b2", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:jetty-proxy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-proxy@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2b456453-28d1-554c-b561-a23eebf03340", "id": "CVE-2024-9823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-9823 is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:jetty-proxy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-proxy@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a987649f-dc5a-5f6e-a640-6b2b03a7a312", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:jetty-proxy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-proxy@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2924ab7e-61e1-544e-8ae7-f272daebc8f0", "id": "CVE-2025-5115", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-5115 is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:jetty-proxy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-proxy@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:559453b4-7cdd-5b6d-96e6-b3ad22b28608", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:jetty-proxy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-proxy@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ce8de098-539b-5d22-9c77-ba98505702ab", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:jetty-proxy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-proxy@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7995d072-e256-5a75-a382-0ed405b4102f", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "resolved", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:jetty-proxy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-proxy@9.4.48.v20220622-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-proxy@9.4.48.v20220622-tuxcare.3" } ] }