{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:c10f9b93-baf6-5c48-8786-95f214785f55", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@9.2.16.v20160414-tuxcare.1", "type": "library", "group": "org.eclipse.jetty", "name": "jetty-servlet", "version": "9.2.16.v20160414-tuxcare.1", "purl": "pkg:maven/org.eclipse.jetty/jetty-servlet@9.2.16.v20160414-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:1ece6b9d-fde0-53a1-929b-1a7df14d5be4", "id": "CVE-2017-7656", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7656 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ae34dce8-5dbe-5511-a917-d56c1aed66cc", "id": "CVE-2017-7657", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7657 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a6258ac9-2797-532f-96b6-55f11d77aa7f", "id": "CVE-2017-7658", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7658 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b6a407e7-6916-5876-8442-5368f4cda91b", "id": "CVE-2017-9735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-9735 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b5939770-4931-54c7-91a7-90b91c8fd52a", "id": "CVE-2018-12536", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-12536 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:59bcd100-a768-51b4-943e-9ed2f2ccb8d2", "id": "CVE-2018-12538", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12538 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9763ab11-9f94-5a62-b037-95167ef09113", "id": "CVE-2018-12545", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12545 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:03fbe86e-ba24-599e-97af-e5bbebbbd4fa", "id": "CVE-2019-10241", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-10241 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:98292f24-3b13-53ea-aa49-6b6ff40bdc69", "id": "CVE-2019-10246", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10246 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f03f6737-15f0-5d96-9d11-5deb3dd51ec4", "id": "CVE-2019-10247", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10247 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:decef14c-5f38-5a6c-a92e-fda2969e23b7", "id": "CVE-2019-17638", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-17638 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2f38a56a-6b31-5333-8104-8f2c3da0fd00", "id": "CVE-2020-27216", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-27216 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9d6e8697-746b-5a02-8820-ecb974ea741a", "id": "CVE-2020-27218", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27218 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9f039dc8-849c-53fc-a7f6-aeaa66a8f235", "id": "CVE-2021-28165", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-28165 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9b98e5d3-9b7d-5b01-b2ad-58b0cf46f88a", "id": "CVE-2021-28169", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-28169 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5c0368c6-a81e-5b05-bc08-e175daecbaa5", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:41e5d43c-05a3-59d1-8956-bc577f995592", "id": "CVE-2022-2047", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-2047 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:342ef7cd-b9b5-59dd-ac3a-ee45ef61b208", "id": "CVE-2022-2048", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-2048 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:009bee77-f151-5860-9a59-377bd4e8a5a9", "id": "CVE-2023-26048", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26048 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c878d637-48ef-5d5f-ab7a-bd29e0baee72", "id": "CVE-2023-26049", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26049 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:32be93e1-3c0d-55dc-90bf-f4bf0e889ec1", "id": "CVE-2023-36479", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-36479 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:304096b1-d5e0-5739-8bb6-c7f940b04a32", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cad68917-5ff0-5d93-8f73-1ffec468775a", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1fa377be-2f80-5add-b7c6-4dd2f4e014f8", "id": "CVE-2024-13009", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-13009 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:26c40421-adbd-594e-a150-761f61d86145", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:934940ff-d7e3-5527-ae6d-62f2b66071d7", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e00cc06d-1521-5c1b-9e2a-9edf3c396125", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ffd07ba8-719a-54f8-aa51-e95daf8638bd", "id": "CVE-2024-9823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-9823 is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b2fa332e-429e-520f-ac3c-cd3fb008a5f3", "id": "CVE-2025-11143", "analysis": { "state": "not_affected", "detail": "Vulnerability CVE-2025-11143 does not affect version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-servlet. Jetty version 9.2.16.v20160414 is not affected to CVE-2025-11143 according to advisories." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e95330b3-d491-5bfd-85c3-4bfb0e2f63f6", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1a17e0cc-e8df-5937-9fa2-ddb340f6d63e", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bf156a42-a152-55b3-910c-ed797a574398", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@9.2.16.v20160414-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d78daf96-d74d-5f41-b7dd-8eaf609185bf", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "resolved", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh is fixed in version 9.2.16.v20160414-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@9.2.16.v20160414-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@9.2.16.v20160414-tuxcare.1" } ] }