{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:460074e7-e3be-5fbd-8e5e-68f4124f71f3", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-server@10.0.26-tuxcare.1", "type": "library", "group": "org.eclipse.jetty", "name": "jetty-server", "version": "10.0.26-tuxcare.1", "purl": "pkg:maven/org.eclipse.jetty/jetty-server@10.0.26-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:4a00f51c-e91c-5449-8231-134351fddf8a", "id": "CVE-2020-25711", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-25711 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-server@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b5cc8517-e4ce-5678-af7c-e0ee7c0831bf", "id": "CVE-2020-27216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27216 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-server@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f6666ae6-e278-5633-9565-fefa9ee794f9", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-server@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8f180046-ac4d-5a5f-9d57-d86c32678d00", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-server@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a19e5661-ac94-5ab4-b924-e204787fea3a", "id": "CVE-2023-36478", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36478 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-server@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:73f5c903-c687-5460-b299-6c1ebbad2fc0", "id": "CVE-2023-36479", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36479 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-server@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:85313619-881a-502a-80af-8b9fbe24c546", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-server@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bce519ee-79a1-5a4f-b027-f9b8eda5ce50", "id": "CVE-2023-41900", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-41900 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-server@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:be22dae5-de53-5252-81d7-d955f1fd1ff3", "id": "CVE-2024-22201", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22201 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-server@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dadc0eaf-4b93-5ee0-93d3-c1f2b0d42819", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-server@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3ac3c6b8-73bc-5bd0-882a-e68629bae7f1", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-server@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a55daead-b247-59f6-9007-44edbb5f4eaf", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-server@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:52b8f8bf-78f0-5e7c-9970-17ef107e06e6", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-server@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6266215d-a833-5528-916f-f498d7a92d6f", "id": "CVE-2025-5115", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-5115 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-server@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:14b90091-32c0-5f8e-95f2-7338c9ea659a", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-server@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2f8e181e-778a-5bcf-aa85-756294539e3a", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-server@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c0cf4e6a-cf2d-558a-b3a7-7e39cd9884f1", "id": "CVE-2026-5795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-5795 is fixed in version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-server@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ca2e84ff-7b00-5ed1-9b25-3a2d2b9b7ca0", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-server@10.0.26-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-server@10.0.26-tuxcare.1" } ] }