{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:da925c0c-d84f-58cd-87f0-3f1ddfe59fa6", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-home@9.4.48.v20220622-tuxcare.3", "type": "library", "group": "org.eclipse.jetty", "name": "jetty-home", "version": "9.4.48.v20220622-tuxcare.3", "purl": "pkg:maven/org.eclipse.jetty/jetty-home@9.4.48.v20220622-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:460ed80a-2612-5285-9e46-fef259560c29", "id": "CVE-2020-27216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27216 affects version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:jetty-home." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-home@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7286f220-94bc-59b7-8c59-891f8c394fd2", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:jetty-home." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-home@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:733de072-a32d-5f1f-8e9b-6bbbc31bc71c", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:jetty-home." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-home@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b57a9535-9479-54ef-a7d6-d478fd75323b", "id": "CVE-2023-26048", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26048 is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:jetty-home." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-home@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8bc72dc0-6eb4-5630-8485-6933febf78e0", "id": "CVE-2023-26049", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26049 is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:jetty-home." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-home@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ed9f2840-e7bc-5323-8a15-1552b1bad374", "id": "CVE-2023-36478", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36478 affects version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:jetty-home." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-home@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:61497c2a-54d5-5a49-97a2-81761ba25f94", "id": "CVE-2023-36479", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-36479 is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:jetty-home." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-home@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7675cfed-9524-5ac1-ac4c-4099129e00b9", "id": "CVE-2023-40167", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-40167 is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:jetty-home." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-home@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f3cf0dd4-0d8a-51cc-89d8-477d1d0b56e7", "id": "CVE-2023-41900", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-41900 is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:jetty-home." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-home@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9130bc26-9557-508e-adf1-6ac17f5a4333", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:jetty-home." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-home@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:92633ca2-fbaa-51b5-9780-5724a01d79df", "id": "CVE-2024-13009", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-13009 is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:jetty-home." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-home@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2449396c-01d3-54b0-a7b7-6652209f0c88", "id": "CVE-2024-22201", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22201 is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:jetty-home." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-home@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e95f5635-222f-592f-863f-bddab2541447", "id": "CVE-2024-6762", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-6762 is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:jetty-home." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-home@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1a666285-1d3a-5da7-b1ee-1f18502b8b46", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:jetty-home." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-home@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:36d54d6a-21f1-5b54-a877-232a7e7d9020", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:jetty-home." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-home@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:15dc98b5-4eb0-5940-8b5a-457ec340d7c7", "id": "CVE-2024-9823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-9823 is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:jetty-home." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-home@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:35c4a8e0-aa4e-59f5-9c0c-db1bd2c6570b", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:jetty-home." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-home@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:27cb6617-679f-5ed0-a9e3-3c9e7c359b0b", "id": "CVE-2025-5115", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-5115 is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:jetty-home." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-home@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e4f55eaa-6fc9-5a8c-83e3-c38f387ed605", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:jetty-home." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-home@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b4a800f5-0242-5044-a335-0a4e82b66913", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:jetty-home." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-home@9.4.48.v20220622-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:aa3a8a0e-9ac1-57cc-b425-f716127a4f84", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "resolved", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh is fixed in version 9.4.48.v20220622-tuxcare.3 of org.eclipse.jetty:jetty-home." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-home@9.4.48.v20220622-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-home@9.4.48.v20220622-tuxcare.3" } ] }