{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:c137dfe8-c370-5057-8a6f-b5c327c7424b", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.50.v20221201-tuxcare.1", "type": "library", "group": "org.eclipse.jetty", "name": "jetty-ant", "version": "9.4.50.v20221201-tuxcare.1", "purl": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.50.v20221201-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:824189f7-3150-5804-a0cc-915324c4051c", "id": "CVE-2020-25711", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-25711 affects version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.50.v20221201-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6e581ec3-31ef-516a-b315-8a73ed7486db", "id": "CVE-2020-27216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27216 affects version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.50.v20221201-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:27220d00-8591-5952-b2d6-f96f214766d1", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.50.v20221201-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:18a58ec8-781e-5e36-ace7-150252876264", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.50.v20221201-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:acfa0657-ac9c-5da0-a648-129bf60de839", "id": "CVE-2023-26048", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26048 is fixed in version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.50.v20221201-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8b7287dd-d0dc-5712-83b5-ca1d8fd9b5e1", "id": "CVE-2023-26049", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26049 is fixed in version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.50.v20221201-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:43f685d9-fddc-5ab9-a5a9-e5d0cdd323aa", "id": "CVE-2023-36478", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36478 affects version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.50.v20221201-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:aab8f273-fbc3-5528-93b8-ac86f9dc817d", "id": "CVE-2023-36479", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-36479 is fixed in version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.50.v20221201-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:35d025da-4d9d-5942-81c1-577d89b46ed7", "id": "CVE-2023-40167", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-40167 is fixed in version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.50.v20221201-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9720f51c-2900-5d83-b161-5f3f2dd3d991", "id": "CVE-2023-41900", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-41900 is fixed in version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.50.v20221201-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6da37ec3-dc22-5497-b14b-7e6f43586203", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.50.v20221201-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fbbf3e0e-988f-5b00-a67c-7f38a084e6a7", "id": "CVE-2024-13009", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-13009 is fixed in version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.50.v20221201-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3e9cc4d8-7eb8-5592-9503-d939cfaf00fd", "id": "CVE-2024-22201", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22201 is fixed in version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.50.v20221201-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:76182c2e-81e2-5650-925a-f9cb7068ad94", "id": "CVE-2024-6762", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-6762 is fixed in version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.50.v20221201-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:87cef6bf-7178-56b9-bcdc-3a21a346211d", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.50.v20221201-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7b8c14f4-9f72-546a-aaab-613d14f12d2d", "id": "CVE-2024-8184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-8184 is fixed in version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.50.v20221201-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ff4a615c-8a90-5160-8098-8faa045bc0a0", "id": "CVE-2024-9823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-9823 is fixed in version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.50.v20221201-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0d2b4b57-0572-5aff-a72b-77395a368f85", "id": "CVE-2025-11143", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-11143 is fixed in version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.50.v20221201-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a3afdd23-0b2a-5fdc-b552-9df26f313329", "id": "CVE-2025-5115", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-5115 affects version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.50.v20221201-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7435661e-d379-594a-9f38-8483229b099f", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.50.v20221201-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dcaf4354-a591-5e3b-9d83-964d57df5338", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.50.v20221201-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:04b24e8d-295e-5596-8826-101823cb71e0", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.50.v20221201-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:804e7d57-cbed-51b7-be63-0eacf21e356d", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "resolved", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh is fixed in version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-ant." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.50.v20221201-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-ant@9.4.50.v20221201-tuxcare.1" } ] }