{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:9f42e28c-f400-5296-be5f-3f3394807df4", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@7.6.0.v20120127-tuxcare.1", "type": "library", "group": "org.eclipse.jetty", "name": "jetty-servlet", "version": "7.6.0.v20120127-tuxcare.1", "purl": "pkg:maven/org.eclipse.jetty/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:11d6579e-7812-5ddb-8c02-acbee309f10f", "id": "CVE-2011-4461", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2011-4461 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:99886634-a9ef-5f85-8a7f-76bb4e6c7b3a", "id": "CVE-2015-2080", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-2080 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:56ea9c22-d525-5c62-a544-eec8b0ea4364", "id": "CVE-2017-7656", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7656 is fixed in version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:66ffc1d8-6790-5ee9-a3e8-492177263f39", "id": "CVE-2017-7657", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7657 is fixed in version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ef16028c-b6f6-5549-937d-84f6d34a3aa3", "id": "CVE-2017-7658", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7658 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0780c62e-cbb1-5313-a2de-3d8abe8311b3", "id": "CVE-2017-9735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-9735 is fixed in version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a56cdda8-e018-5243-934a-b5318997c8e2", "id": "CVE-2018-12536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12536 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b4ded626-7aca-53d9-b38c-a6e65871f667", "id": "CVE-2018-12538", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12538 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:49cf40df-f3b5-53f4-9e6e-7733f0abdc5f", "id": "CVE-2018-12545", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12545 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4d821ecb-53c8-5620-bfa9-d024e08c0ab7", "id": "CVE-2019-10241", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10241 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d54d5e86-1572-50b6-a69c-9f13c9c3a462", "id": "CVE-2019-10246", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10246 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:863b244c-46d5-54b3-bfb3-45867d089746", "id": "CVE-2019-10247", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-10247 is fixed in version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8d102d41-5f9d-589d-b943-ffe449c372ea", "id": "CVE-2019-17638", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-17638 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ad4396fa-c1ef-5050-87d3-e3b5753cd55f", "id": "CVE-2020-27216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27216 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fb52508d-6276-5c9b-a47b-e3652b203738", "id": "CVE-2020-27218", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27218 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:427425d7-c19e-5df2-81cc-f40bfc4bfdea", "id": "CVE-2021-28165", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-28165 is fixed in version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:77d34772-2604-5d8c-953d-1ddd8f0d0580", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5a95bcb9-6bda-5154-b849-754bfea00c6b", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:08b7d52d-8ed6-5aed-9efa-a7b055d52c9a", "id": "CVE-2022-2047", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-2047 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1cb0ac55-fa64-5cfe-95d6-9ada144ad087", "id": "CVE-2022-2048", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-2048 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8cbb4138-c4d2-5727-8b1b-6d4be472ac8b", "id": "CVE-2023-26048", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26048 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e4aeb768-394f-5ec4-9705-069ca793e675", "id": "CVE-2023-26049", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26049 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:33d3674c-460b-51c2-8397-d8453840fe34", "id": "CVE-2023-36479", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-36479 is fixed in version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b55dbe7c-8694-5649-947f-02bab50db30d", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:16714663-d732-5aea-995e-91ecdde135d1", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0dd2d111-ffd0-512f-85c6-6c006a577582", "id": "CVE-2024-13009", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-13009 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:71e32ec2-3dbe-5292-9be2-f2ab62a64b2b", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d6d0b1f6-b213-5ad4-a21d-ef0bc174907a", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9a679c5c-48ea-5119-807e-14ef94af1ca1", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ea3695ce-9ced-57c2-a963-091449449b35", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4638cfbc-533f-5cac-ab9d-37ff0c3913ef", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9f9c0c9e-af54-58d9-9671-680be7260a72", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9302c5a0-2d97-58c1-bbdf-bfb12541251f", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3dffc1da-2d74-5289-975e-e3e9f654204e", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }