{
  "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json",
  "bomFormat": "CycloneDX",
  "specVersion": "1.6",
  "serialNumber": "urn:uuid:5ba8617a-8a3b-56e1-8a87-d425a930b996",
  "version": 1,
  "metadata": {
    "tools": [
      {
        "name": "tuxcare-vex-generator",
        "version": "1.0.0"
      }
    ]
  },
  "components": [
    {
      "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-xml@9.4.58.v20250814-tuxcare.2",
      "type": "library",
      "group": "org.eclipse.jetty",
      "name": "jetty-xml",
      "version": "9.4.58.v20250814-tuxcare.2",
      "purl": "pkg:maven/org.eclipse.jetty/jetty-xml@9.4.58.v20250814-tuxcare.2"
    }
  ],
  "vulnerabilities": [
    {
      "bom-ref": "urn:uuid:e99e5777-824b-56fa-8ef0-7b48d5e2dc1b",
      "id": "CVE-2020-27216",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2020-27216 affects version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty:jetty-xml."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-xml@9.4.58.v20250814-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:e154445a-f9db-58aa-8293-92bf4788186b",
      "id": "CVE-2021-28169",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2021-28169 affects version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty:jetty-xml."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-xml@9.4.58.v20250814-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:18893047-9237-51d7-bdc9-8e8bf97ed65a",
      "id": "CVE-2021-34428",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2021-34428 affects version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty:jetty-xml."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-xml@9.4.58.v20250814-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:67b87621-dcd6-5159-ab72-ac19c18d5239",
      "id": "CVE-2023-36478",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2023-36478 affects version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty:jetty-xml."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-xml@9.4.58.v20250814-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:cd254471-b7fa-55c7-8349-88a57f2ec25e",
      "id": "CVE-2023-36479",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2023-36479 affects version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty:jetty-xml."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-xml@9.4.58.v20250814-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:7a67d4ab-b5ac-5516-b392-edc8de2ab842",
      "id": "CVE-2023-40167",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2023-40167 affects version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty:jetty-xml."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-xml@9.4.58.v20250814-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:58629dcc-5d73-504b-8878-a5b26f5d0e7b",
      "id": "CVE-2023-41900",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2023-41900 affects version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty:jetty-xml."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-xml@9.4.58.v20250814-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:1698696a-db38-52aa-a6c9-93dbb9ef163f",
      "id": "CVE-2024-22201",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2024-22201 affects version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty:jetty-xml."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-xml@9.4.58.v20250814-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:f31ded93-8bd4-5c80-9c44-7b9cc06ca7e1",
      "id": "CVE-2024-6762",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2024-6762 affects version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty:jetty-xml."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-xml@9.4.58.v20250814-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:601cfa9b-7fc2-59e9-b3f3-a4de8f4163bc",
      "id": "CVE-2024-6763",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2024-6763 affects version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty:jetty-xml."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-xml@9.4.58.v20250814-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:268e72cc-7f82-5f17-8644-ef6f901fccf6",
      "id": "CVE-2024-8184",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2024-8184 affects version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty:jetty-xml."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-xml@9.4.58.v20250814-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:27df90a8-8ea8-5ce7-83e1-936abb83bd45",
      "id": "CVE-2025-11143",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-11143 affects version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty:jetty-xml."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-xml@9.4.58.v20250814-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:ff266334-4897-541a-94ff-e1e6148e2488",
      "id": "CVE-2025-5115",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-5115 affects version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty:jetty-xml."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-xml@9.4.58.v20250814-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:8fc8c483-da91-562a-93c3-6931f069fa69",
      "id": "CVE-2026-1605",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-1605 affects version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty:jetty-xml."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-xml@9.4.58.v20250814-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:86c1edaf-018d-580b-8efc-e700037c4f19",
      "id": "CVE-2026-2332",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-2332 affects version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty:jetty-xml."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-xml@9.4.58.v20250814-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:c9bd7d6a-1164-527e-84d1-3a45096300f8",
      "id": "CVE-2026-5795",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2026-5795 is fixed in version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty:jetty-xml."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-xml@9.4.58.v20250814-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:0054f394-c650-55fd-9955-4b8723ed6a65",
      "id": "GHSA-58qw-p7qm-5rvh",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 9.4.58.v20250814-tuxcare.2 of org.eclipse.jetty:jetty-xml."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.eclipse.jetty/jetty-xml@9.4.58.v20250814-tuxcare.2"
        }
      ]
    }
  ],
  "dependencies": [
    {
      "ref": "pkg:maven/org.eclipse.jetty/jetty-xml@9.4.58.v20250814-tuxcare.2"
    }
  ]
}