{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:eca683c2-f45a-551c-a47d-5d99563b0db0", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-start@9.4.48.v20220622-tuxcare.1", "type": "library", "group": "org.eclipse.jetty", "name": "jetty-start", "version": "9.4.48.v20220622-tuxcare.1", "purl": "pkg:maven/org.eclipse.jetty/jetty-start@9.4.48.v20220622-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:cf207d52-3310-50a7-9b30-82266f7aafa3", "id": "CVE-2020-27216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27216 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-start." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-start@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3818c1c4-fa69-578a-bd95-b950c315ce25", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-start." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-start@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e4869c30-fe71-5bc4-a84f-eb47f475563d", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-start." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-start@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2362224d-c01e-56b1-86c8-4174895adb90", "id": "CVE-2023-26048", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26048 is fixed in version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-start." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-start@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b174bd48-9ab1-5415-96f9-88403a0f1b32", "id": "CVE-2023-26049", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26049 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-start." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-start@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:97afd13c-b7ef-5e28-a6f4-f62c7fd402e7", "id": "CVE-2023-36478", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36478 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-start." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-start@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:38b6db0a-40b3-526c-a50b-b8541d7e2253", "id": "CVE-2023-36479", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36479 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-start." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-start@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:697db1d1-0948-5676-a8c2-8326c55add45", "id": "CVE-2023-40167", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-40167 is fixed in version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-start." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-start@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:86e027dc-51a0-5add-bac3-74a29b8bf5b2", "id": "CVE-2023-41900", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-41900 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-start." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-start@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ddbfd578-7d6f-5dd0-9839-38ec457b8257", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-start." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-start@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:15297a5a-7116-551a-95a3-8945e9e09589", "id": "CVE-2024-13009", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-13009 is fixed in version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-start." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-start@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:223995be-201b-523d-badc-dfe022139044", "id": "CVE-2024-22201", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22201 is fixed in version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-start." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-start@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fec0b462-5d1b-5939-8c0e-6231d90477c6", "id": "CVE-2024-6762", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-6762 is fixed in version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-start." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-start@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2a574f98-a988-5f1a-9686-b7e62f2490e1", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-start." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-start@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dc10a1c1-fd6b-55a3-bead-f26ae99f02ea", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-start." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-start@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:063d4765-b99c-5749-81db-e1dda44a3c66", "id": "CVE-2024-9823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-9823 is fixed in version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-start." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-start@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:db6894d1-2096-5466-825a-9a1a146110e6", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-start." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-start@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0d7fec4d-bc04-5db9-9f95-b025a3f4bd3e", "id": "CVE-2025-5115", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-5115 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-start." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-start@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2849d93c-5615-5530-858a-a99590080f6e", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-start." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-start@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0dab2e2b-e125-5696-99a0-96d5680e91e9", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-start." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-start@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e5515202-3f4c-517e-bf64-e9c02e0fe0a2", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-start." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-start@9.4.48.v20220622-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-start@9.4.48.v20220622-tuxcare.1" } ] }