{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:64623bb4-7a2d-5bbd-b604-75b4e16bd941", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-quickstart@9.4.48.v20220622-tuxcare.2", "type": "library", "group": "org.eclipse.jetty", "name": "jetty-quickstart", "version": "9.4.48.v20220622-tuxcare.2", "purl": "pkg:maven/org.eclipse.jetty/jetty-quickstart@9.4.48.v20220622-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:cef8b185-02a7-512b-a75d-49e6ecc1c70e", "id": "CVE-2020-27216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27216 affects version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty:jetty-quickstart." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-quickstart@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d2ad500a-9a1c-562e-b7c2-4374c2f8133f", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty:jetty-quickstart." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-quickstart@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6d39ab07-c625-5c16-8c17-bc86fdbcb2d2", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty:jetty-quickstart." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-quickstart@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f7128db0-4fce-50bc-b13f-e6052a1cfb85", "id": "CVE-2023-26048", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26048 is fixed in version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty:jetty-quickstart." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-quickstart@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c228bfe9-dcfb-5542-a5fe-c33eb0be0b98", "id": "CVE-2023-26049", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26049 is fixed in version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty:jetty-quickstart." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-quickstart@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4b6a8499-343d-5226-b549-2e5b65ee60b7", "id": "CVE-2023-36478", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36478 affects version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty:jetty-quickstart." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-quickstart@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:eb9ef22f-b7c3-52bc-ad72-6613a1647bdb", "id": "CVE-2023-36479", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-36479 is fixed in version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty:jetty-quickstart." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-quickstart@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:767bbd34-484b-5d0f-b78d-9f4ff27592b7", "id": "CVE-2023-40167", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-40167 is fixed in version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty:jetty-quickstart." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-quickstart@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b3cd8903-daae-5401-a37b-780f6d5eac92", "id": "CVE-2023-41900", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-41900 is fixed in version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty:jetty-quickstart." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-quickstart@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a68d3395-bc00-553e-b3ec-88c5f0649021", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty:jetty-quickstart." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-quickstart@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:36d5a60f-54b5-5a29-9c05-397b55e39aa3", "id": "CVE-2024-13009", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-13009 is fixed in version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty:jetty-quickstart." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-quickstart@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b7308b44-7a99-5785-85cc-0722f681a1d6", "id": "CVE-2024-22201", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22201 is fixed in version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty:jetty-quickstart." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-quickstart@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1e13a846-4d47-5f0f-a0c4-d7f24c2e96b3", "id": "CVE-2024-6762", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-6762 is fixed in version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty:jetty-quickstart." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-quickstart@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c277a24a-5398-513d-b508-b2d4ced7bf94", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty:jetty-quickstart." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-quickstart@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a2999e25-0fb4-54e1-ab23-75f0ecabe424", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty:jetty-quickstart." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-quickstart@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:90bd00f5-4819-52c1-82bb-c2e15b5663c7", "id": "CVE-2024-9823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-9823 is fixed in version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty:jetty-quickstart." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-quickstart@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:228e0ad5-54f9-57f8-b943-8d2e0c76a0df", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty:jetty-quickstart." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-quickstart@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:07f2bbdf-e0e4-5db0-b6db-ea5ab174e8df", "id": "CVE-2025-5115", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-5115 is fixed in version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty:jetty-quickstart." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-quickstart@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b2f74029-7bc2-5015-8aad-bf9577f04cc4", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty:jetty-quickstart." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-quickstart@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:61878907-acfe-576b-b300-7e97fe48de20", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty:jetty-quickstart." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-quickstart@9.4.48.v20220622-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c71e5831-2d0a-5de7-a0b6-b8b6801effce", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "resolved", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh is fixed in version 9.4.48.v20220622-tuxcare.2 of org.eclipse.jetty:jetty-quickstart." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-quickstart@9.4.48.v20220622-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-quickstart@9.4.48.v20220622-tuxcare.2" } ] }