{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:aca91291-4bf4-537a-a7ef-524ece3e2f20", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-proxy@9.4.48.v20220622-tuxcare.1", "type": "library", "group": "org.eclipse.jetty", "name": "jetty-proxy", "version": "9.4.48.v20220622-tuxcare.1", "purl": "pkg:maven/org.eclipse.jetty/jetty-proxy@9.4.48.v20220622-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:bbbeece5-6491-50a0-bfd7-90ad38286688", "id": "CVE-2020-27216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27216 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-proxy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-proxy@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:012791c1-dce8-5767-9d7e-28a0cc523784", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-proxy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-proxy@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0155f435-2c94-5b4a-828e-4e531448341a", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-proxy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-proxy@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:93ae915c-e189-50d7-ab09-edf09b9affa5", "id": "CVE-2023-26048", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26048 is fixed in version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-proxy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-proxy@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b8057300-6805-5b70-89ea-c39e3d897a9b", "id": "CVE-2023-26049", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26049 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-proxy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-proxy@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:48944602-3646-590a-9b67-92213ef9b651", "id": "CVE-2023-36478", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36478 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-proxy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-proxy@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:817ec2a2-6d52-55b1-b393-4fafad5dba78", "id": "CVE-2023-36479", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36479 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-proxy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-proxy@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d3259ecd-7958-5f5a-ba3e-1ebbb70e0b6c", "id": "CVE-2023-40167", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-40167 is fixed in version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-proxy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-proxy@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:abf142fa-9af6-5489-928c-ac580bf840d2", "id": "CVE-2023-41900", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-41900 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-proxy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-proxy@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2a787bdf-c6b5-52aa-94f0-6e74616c0de2", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-proxy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-proxy@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a394adab-e4d3-518e-8207-11340bcf277b", "id": "CVE-2024-13009", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-13009 is fixed in version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-proxy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-proxy@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f662279c-5a02-5e8a-9051-e08e449387ce", "id": "CVE-2024-22201", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22201 is fixed in version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-proxy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-proxy@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:971997cf-c552-5863-8a9e-e0df0f4c117a", "id": "CVE-2024-6762", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-6762 is fixed in version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-proxy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-proxy@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fff255e5-8044-51c5-9685-154139b39bce", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-proxy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-proxy@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:35839247-be1d-55a9-89fe-f88e99067e01", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-proxy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-proxy@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b8b9de12-fa24-5757-83d8-362813f21f61", "id": "CVE-2024-9823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-9823 is fixed in version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-proxy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-proxy@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:566d9ad0-071c-569d-9008-ef8c8caf6c48", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-proxy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-proxy@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:545f11d6-caba-5e94-be7a-97c734cb8fea", "id": "CVE-2025-5115", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-5115 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-proxy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-proxy@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0c94d7fa-07dc-5ff1-ac27-3fabd0bac33b", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-proxy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-proxy@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:623cd6a8-1130-5d30-943f-8b8ec3e0ddde", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-proxy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-proxy@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:73d7ec9f-b50f-548a-a07e-6cfd9e19aee7", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-proxy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-proxy@9.4.48.v20220622-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-proxy@9.4.48.v20220622-tuxcare.1" } ] }