{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:f1449f2a-855f-560d-b9e2-54ab1acdb959", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-rewrite@9.4.48.v20220622-tuxcare.3", "type": "library", "group": "org.eclipse.jetty", "name": "jetty-rewrite", "version": "9.4.48.v20220622-tuxcare.3", "purl": "pkg:maven/org.eclipse.jetty/jetty-rewrite@9.4.48.v20220622-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:55054098-aacd-5257-a8ca-fa0f33e384d4", "id": "CVE-2020-27216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27216 affects version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:jetty-rewrite." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-rewrite@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:99831f15-a2d3-5b01-a4f2-02c2f1bc50cb", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:jetty-rewrite." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-rewrite@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:35fdfcb3-aa2e-5732-9687-5a4e7b1f078a", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:jetty-rewrite." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-rewrite@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:36addba3-e645-52d1-bae7-7eb9b8bc9d4a", "id": "CVE-2023-26048", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26048 is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:jetty-rewrite." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-rewrite@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d8b3477d-5a35-5def-8c3b-787e7e916a1c", "id": "CVE-2023-26049", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26049 is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:jetty-rewrite." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-rewrite@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9dc44eec-09eb-5cd1-b6f2-c112595be0e1", "id": "CVE-2023-36478", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36478 affects version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:jetty-rewrite." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-rewrite@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:51593c16-cfbf-55a1-a7e8-d4d403095c52", "id": "CVE-2023-36479", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-36479 is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:jetty-rewrite." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-rewrite@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4839fad7-d297-5365-9c18-4183b9efcc44", "id": "CVE-2023-40167", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-40167 is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:jetty-rewrite." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-rewrite@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8ebd3819-03df-52e0-a322-fef13bc28f78", "id": "CVE-2023-41900", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-41900 is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:jetty-rewrite." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-rewrite@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7ce8af86-18c3-51cc-a461-86382c3fee49", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:jetty-rewrite." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-rewrite@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2335e9f3-5274-5c35-b23e-b1f17febdc7b", "id": "CVE-2024-13009", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-13009 is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:jetty-rewrite." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-rewrite@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:465eb984-3843-558b-bec4-e06c2c834bb6", "id": "CVE-2024-22201", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22201 is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:jetty-rewrite." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-rewrite@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9cda3cfe-db2c-52be-9476-8cd998d0bd80", "id": "CVE-2024-6762", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-6762 is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:jetty-rewrite." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-rewrite@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a7dff5cd-ba96-57a8-bf09-2267e121155d", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:jetty-rewrite." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-rewrite@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:575770a5-c918-5ec6-9815-21b744441060", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:jetty-rewrite." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-rewrite@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f519a005-486d-5054-929a-e1dd3270e864", "id": "CVE-2024-9823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-9823 is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:jetty-rewrite." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-rewrite@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:01be8b8b-7104-53ed-9fc7-aa5a6be1086a", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:jetty-rewrite." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-rewrite@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a058de47-69c4-5ffd-b9a7-3a71203355ec", "id": "CVE-2025-5115", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-5115 is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:jetty-rewrite." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-rewrite@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7eff2bc0-40d2-52b9-a3d6-30f143f5d9cd", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:jetty-rewrite." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-rewrite@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bcb69995-2a8f-5c3b-85b3-6a2b255d6392", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:jetty-rewrite." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-rewrite@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4dbc43a5-7dff-57bc-b5c6-99e938a79582", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "resolved", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:jetty-rewrite." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-rewrite@9.4.48.v20220622-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-rewrite@9.4.48.v20220622-tuxcare.3" } ] }