{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:f52b8d2c-7f65-5f86-bce0-cf2f3ec6eba8", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.10", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-api", "version": "8.5.100-tuxcare.10", "purl": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.10" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:8d43836e-8c4f-531d-911f-ff13117fc9fe", "id": "CVE-2016-0762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0762 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:5e45d2f4-d693-5590-a33b-7d0028768835", "id": "CVE-2016-0763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0763 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:ffd136b3-bb0e-55dc-b731-befde1ab5da0", "id": "CVE-2016-5018", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5018 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:7be1f714-453f-5cad-b947-545cdef731f3", "id": "CVE-2016-6794", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6794 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:52b52dac-7882-5ac0-bbc8-ca4bfad8d7b2", "id": "CVE-2016-6796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6796 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:61048da7-7bf0-507d-a49f-48e814c3c360", "id": "CVE-2016-6797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6797 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:8cddb3c1-417b-52b2-8f90-db9d8feb3aed", "id": "CVE-2016-6816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6816 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:15035b42-efd5-5588-8dd4-19d0a2cbd36b", "id": "CVE-2016-6817", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6817 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:aacdbd43-a092-57b6-ab73-5b999391bb2e", "id": "CVE-2016-8745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8745 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:09341467-afde-5a95-a5df-0f5bc10e3a1a", "id": "CVE-2016-8747", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8747 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:1992a24c-39cd-55fc-9cc3-bef813c37c4f", "id": "CVE-2017-12617", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-12617 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:9bb0e18c-ca5b-5545-8c40-3efb6f2b606b", "id": "CVE-2017-5647", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5647 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:f5b5603b-cd21-5dff-9c2a-95599c89c3d4", "id": "CVE-2017-5648", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5648 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:a1b7d829-7d56-5fcc-83e2-d1c86cb4eeaa", "id": "CVE-2017-5650", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5650 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:e3d077ea-e8f1-5f64-a53d-1e7aca2ea88d", "id": "CVE-2017-5651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5651 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:9a99545f-f25a-5c8a-8cbc-0c212681b5a9", "id": "CVE-2017-5664", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5664 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:a3f245f4-00b5-57b0-8b68-36d96e93eb21", "id": "CVE-2017-7674", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7674 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:f29c69c3-a944-5a65-8ff1-5d96495300bc", "id": "CVE-2017-7675", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7675 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:133a5708-d411-541e-b7a1-cc65451d6418", "id": "CVE-2018-1304", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1304 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:5d97c758-0f86-51e6-bcd1-381df052600e", "id": "CVE-2018-1305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1305 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:ae871542-b7c1-5fb4-8ec6-79c8d7dbe8c4", "id": "CVE-2018-1336", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1336 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:0afcbf17-6c45-53bd-be8e-7784df090c17", "id": "CVE-2018-8014", "analysis": { "state": "not_affected", "detail": "Vulnerability CVE-2018-8014 does not affect version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-api. Tomcat Version 8.5.100 is not vulnerable to CVE-2018-8014. Confirmed by manual code inspection and security advisories." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:62099fd3-a827-5f43-8cc1-a86b32069086", "id": "CVE-2018-8034", "analysis": { "state": "not_affected", "detail": "Vulnerability CVE-2018-8034 does not affect version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-api. Tomcat Version 8.5.100 is not vulnerable to CVE-2018-8034. Confirmed by manual code inspection and security advisories." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:1f4e783f-761d-50db-9afb-443c6e464296", "id": "CVE-2020-11996", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11996 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:a73d9ac3-2fe0-5f07-8414-bd694b11b659", "id": "CVE-2020-13934", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13934 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:725f42ce-d5cb-52e1-b2fd-f3e02d73011d", "id": "CVE-2020-13943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13943 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:83bbeda9-08e7-5094-a7ca-0f63398998a7", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.tomcat:tomcat-api 8.5.100-tuxcare.10." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:d894df3a-dc1b-5ff3-ad40-0858392b2c3e", "id": "CVE-2020-9484", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-9484 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:24c9d923-b2a9-53f3-be37-ab5632cf0e5c", "id": "CVE-2021-24122", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-24122 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:a3766f58-f2a8-5b57-8d54-af13b5d2041a", "id": "CVE-2021-42340", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-42340 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:86ec414d-7d14-54d6-be60-cb9b6ab18616", "id": "CVE-2022-34305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-34305 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:2bf11cd1-d74d-5ec1-8c00-df72c311a842", "id": "CVE-2022-45143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-45143 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:2b94ccd1-2e45-5d25-a387-98093dee0e26", "id": "CVE-2024-23672", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23672 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:c311eec6-f31d-54e5-8bd0-7b23ec478611", "id": "CVE-2024-24549", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-24549 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:79cb4d90-8aeb-5340-9913-b71265312001", "id": "CVE-2024-34750", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-34750 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:280c881f-b9e1-5bf2-99f2-468075771117", "id": "CVE-2024-38286", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38286 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:4c2d065c-f78a-5207-9529-5809cea1cdfc", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:3c466585-ed9b-52a3-b134-46530843387b", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:c3c9b058-0796-56bc-ac48-8d47ceb94821", "id": "CVE-2024-52317", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52317 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:0640e0f9-214a-5d72-b5cc-fdadea5b6e00", "id": "CVE-2024-54677", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-54677 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:6ebdcaf4-ac31-597d-9ab3-74c5d3fcaf9a", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:c368d2c1-6ac3-5818-82d3-f3de26359f44", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:0ffc90e8-f1f9-5be6-90a4-5994c544a84a", "id": "CVE-2025-31651", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31651 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:6d060b3b-24f1-57fb-8c4f-1d6ec3bcada9", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:132ca13b-a4ab-520d-997a-4627f92cfc20", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:7a56a163-18ab-557e-8317-c2f1dd86f133", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:b081f173-19e9-599c-a643-a7e87104db52", "id": "CVE-2025-49125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49125 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:46f0c608-d0ee-5c4f-9d18-8d345ce08932", "id": "CVE-2025-52434", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52434 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:53eb171a-ece7-5efc-8a62-9947c8be43e0", "id": "CVE-2025-52520", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52520 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:8b933989-5aa0-5d01-9415-eaaf0802af2a", "id": "CVE-2025-53506", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-53506 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:dc7bc3ba-8eef-513d-b0a3-d58360a105df", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:95266048-6199-5a54-8a46-b5e4888215f7", "id": "CVE-2025-55752", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55752 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:b7a71a2b-c16d-5e9c-955f-8fe3a33e191c", "id": "CVE-2025-55754", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55754 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:0838dfa6-5394-5657-88b3-ee67c6882836", "id": "CVE-2025-61795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61795 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:473ffb25-ff65-5d76-ab60-7e1167e23658", "id": "CVE-2025-66614", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66614 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:13fc15eb-f526-5801-8e1a-0425d0c39871", "id": "CVE-2026-24733", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-24733 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:33f6f877-0dc5-5214-a398-8bf896977f81", "id": "CVE-2026-24880", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-24880 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:a93cd6ae-28f4-5c80-b741-677e640c069b", "id": "CVE-2026-25854", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-25854 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:371b9dca-3764-5e38-9b31-8a24c7067ee9", "id": "CVE-2026-29146", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-29146 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:f0a43ef5-e4cf-5428-9f34-289bf776e504", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:3d56110d-0549-5762-a7b6-4d3d67d78426", "id": "CVE-2026-34486", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34486 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.10" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-api@8.5.100-tuxcare.10" } ] }