{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:5602a17e-4660-5cf5-93b2-bdd9f10bc39d", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-slf4j-impl@10.0.26-tuxcare.1", "type": "library", "group": "org.eclipse.jetty", "name": "jetty-slf4j-impl", "version": "10.0.26-tuxcare.1", "purl": "pkg:maven/org.eclipse.jetty/jetty-slf4j-impl@10.0.26-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:0033f1e8-3e2c-56b4-a19e-fae5fc1cc3ba", "id": "CVE-2020-25711", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-25711 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-slf4j-impl." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-slf4j-impl@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:316aeb8f-f0cd-5afe-b0bc-73d73f1d7a9e", "id": "CVE-2020-27216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27216 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-slf4j-impl." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-slf4j-impl@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b65193d1-018f-500e-85f8-a221a556d449", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-slf4j-impl." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-slf4j-impl@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:599835fe-3719-55c6-8fcc-e9f664a5f3a1", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-slf4j-impl." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-slf4j-impl@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c07644cf-4164-5368-a802-14891352efa6", "id": "CVE-2023-36478", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36478 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-slf4j-impl." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-slf4j-impl@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9a9bef8a-fb06-5493-9446-fe753ace7853", "id": "CVE-2023-36479", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36479 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-slf4j-impl." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-slf4j-impl@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1f4e06e3-633d-549d-bfe7-d89008377c33", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-slf4j-impl." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-slf4j-impl@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e68915f7-1841-54c7-acb0-cf79eb43e6e5", "id": "CVE-2023-41900", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-41900 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-slf4j-impl." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-slf4j-impl@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:88121a5d-23ca-557d-93c3-2cda54b05022", "id": "CVE-2024-22201", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22201 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-slf4j-impl." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-slf4j-impl@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:72108698-199d-5e26-aeb2-c484b76a6096", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-slf4j-impl." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-slf4j-impl@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bb817d68-7897-5e62-83a7-9e31b93f8ea6", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-slf4j-impl." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-slf4j-impl@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3cc08ad3-e511-5dc9-b4f3-711361b9b174", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-slf4j-impl." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-slf4j-impl@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fd3176c3-c160-513b-9439-fbc7ad62e820", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-slf4j-impl." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-slf4j-impl@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6383b9f4-793e-588a-96e3-c5f91fc3996c", "id": "CVE-2025-5115", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-5115 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-slf4j-impl." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-slf4j-impl@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bdbb2f5e-464c-5169-b84e-9f3e08d5accc", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-slf4j-impl." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-slf4j-impl@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ff5b143f-8916-5355-9538-4648c34d4e3a", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-slf4j-impl." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-slf4j-impl@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3ba60659-baba-5be8-9f15-80fdbec4765d", "id": "CVE-2026-5795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-5795 is fixed in version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-slf4j-impl." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-slf4j-impl@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:45351652-f6b4-5ddb-8805-5913460e57d3", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 10.0.26-tuxcare.1 of org.eclipse.jetty:jetty-slf4j-impl." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-slf4j-impl@10.0.26-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-slf4j-impl@10.0.26-tuxcare.1" } ] }