{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:5f45ac65-6781-55f7-8e45-5cf6d5cb50eb", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/test-jetty-webapp@9.4.48.v20220622-tuxcare.3", "type": "library", "group": "org.eclipse.jetty", "name": "test-jetty-webapp", "version": "9.4.48.v20220622-tuxcare.3", "purl": "pkg:maven/org.eclipse.jetty/test-jetty-webapp@9.4.48.v20220622-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:aec4e31b-74b3-58fa-9f69-b01130159d13", "id": "CVE-2020-27216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27216 affects version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:test-jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/test-jetty-webapp@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a16114d3-a8fe-5574-8580-29df58b72d16", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:test-jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/test-jetty-webapp@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fd1a4855-3d92-52a6-af45-9f62e2e9f38d", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:test-jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/test-jetty-webapp@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:512e8998-d51b-58d9-954e-786be272d593", "id": "CVE-2023-26048", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26048 is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:test-jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/test-jetty-webapp@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:811eb79c-e229-5b08-be1e-7ad7546c3331", "id": "CVE-2023-26049", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26049 is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:test-jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/test-jetty-webapp@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8eeb8eee-263c-5a0d-9742-0e9eeeeeef2e", "id": "CVE-2023-36478", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36478 affects version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:test-jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/test-jetty-webapp@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2d1272d7-c104-58cd-8336-4b99565e0803", "id": "CVE-2023-36479", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-36479 is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:test-jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/test-jetty-webapp@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:51bbf351-3e49-5937-af26-4012ac71b881", "id": "CVE-2023-40167", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-40167 is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:test-jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/test-jetty-webapp@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:dc9d135c-b006-5ed4-8efc-17a2c861bf73", "id": "CVE-2023-41900", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-41900 is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:test-jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/test-jetty-webapp@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2819a653-7290-512d-9ab9-7aa11a9cc8b3", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:test-jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/test-jetty-webapp@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2bb7d3f9-ef7b-5da3-8897-cc796f70caec", "id": "CVE-2024-13009", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-13009 is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:test-jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/test-jetty-webapp@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:100b726a-af8e-5202-9ec5-a3709e644748", "id": "CVE-2024-22201", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22201 is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:test-jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/test-jetty-webapp@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1c8d65a4-13db-5f7c-adb5-fce96c5486e6", "id": "CVE-2024-6762", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-6762 is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:test-jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/test-jetty-webapp@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0fe8e27f-6aa1-5daa-8eb4-20785f859d7c", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:test-jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/test-jetty-webapp@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e225a9f7-1390-586f-bf39-d6d15d19d393", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:test-jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/test-jetty-webapp@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d4cec196-87b8-57ed-9edb-fc17bc6aa411", "id": "CVE-2024-9823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-9823 is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:test-jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/test-jetty-webapp@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4d4de9b1-081b-5d72-999a-a86aa89f2a6e", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:test-jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/test-jetty-webapp@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:72a8e44c-c0b5-5951-b7ea-b5217b73d41d", "id": "CVE-2025-5115", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-5115 is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:test-jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/test-jetty-webapp@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ab1c3359-ea4d-5c0b-9190-56eacf49e088", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:test-jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/test-jetty-webapp@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3971ddfe-5eeb-5d0b-94eb-adc0d83cee6d", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:test-jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/test-jetty-webapp@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2b5ee6e7-7c31-5bf4-86e6-a4a64969671d", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "resolved", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:test-jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/test-jetty-webapp@9.4.48.v20220622-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/test-jetty-webapp@9.4.48.v20220622-tuxcare.3" } ] }