{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:fe0d9988-b0c3-5113-8875-a877d4f152ea", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-home@9.4.48.v20220622-tuxcare.1", "type": "library", "group": "org.eclipse.jetty", "name": "jetty-home", "version": "9.4.48.v20220622-tuxcare.1", "purl": "pkg:maven/org.eclipse.jetty/jetty-home@9.4.48.v20220622-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:ab5ccbfa-e0dc-5602-83cd-c9591169589f", "id": "CVE-2020-27216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27216 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-home." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-home@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4dd1a411-5bfd-5d52-b2ed-25f0ef60e472", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-home." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-home@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ae0dd05d-7b5d-516d-aef0-cd06a016827e", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-home." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-home@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a2a5b3af-5bdc-554b-96a1-7681d2b61bc0", "id": "CVE-2023-26048", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26048 is fixed in version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-home." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-home@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7d786342-9a5e-5f24-a189-c7edfc3054da", "id": "CVE-2023-26049", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26049 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-home." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-home@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:98494d89-a7d5-53fc-9b14-c018f11127b5", "id": "CVE-2023-36478", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36478 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-home." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-home@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a4037736-9425-5572-bc8c-01114c190610", "id": "CVE-2023-36479", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36479 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-home." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-home@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4748599e-5170-58c1-8c6f-55bcc4f81121", "id": "CVE-2023-40167", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-40167 is fixed in version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-home." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-home@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a4ff833d-8e6a-5244-a4bf-ce0a6f0fc2ba", "id": "CVE-2023-41900", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-41900 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-home." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-home@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cc094a6c-724f-5409-ba50-04d09964fff7", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-home." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-home@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4d4c8642-f503-5196-9545-2fa21ccdf1ec", "id": "CVE-2024-13009", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-13009 is fixed in version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-home." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-home@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:39f59b2e-9a10-5174-90e3-6485d9e3e432", "id": "CVE-2024-22201", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22201 is fixed in version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-home." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-home@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:033f35e5-659b-5ce8-966c-35f4213c9ec1", "id": "CVE-2024-6762", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-6762 is fixed in version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-home." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-home@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e8ce846f-4110-562c-8b56-6ca8fb7f2154", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-home." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-home@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:37dc0fb2-104a-5bb4-a11d-06ded97c24cc", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-home." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-home@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3aab202d-11fd-588f-96c3-9bc79ed494e7", "id": "CVE-2024-9823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-9823 is fixed in version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-home." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-home@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ae8dd44b-18af-5f54-b446-083ed4d0abb0", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-home." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-home@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ece633b9-791d-5370-a8e1-24274795aecb", "id": "CVE-2025-5115", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-5115 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-home." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-home@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2c485246-94b7-5216-8465-50ef7021a738", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-home." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-home@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b47b6d12-b86e-56e5-9fc8-b671b796ffbb", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-home." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-home@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c3eb82b9-1d70-5823-a507-bf4d47949c65", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-home." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-home@9.4.48.v20220622-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-home@9.4.48.v20220622-tuxcare.1" } ] }