{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:902dfbea-ad2f-5f97-8c87-765b87e1417a", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ha@8.5.100-tuxcare.9", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-catalina-ha", "version": "8.5.100-tuxcare.9", "purl": "pkg:maven/org.apache.tomcat/tomcat-catalina-ha@8.5.100-tuxcare.9" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:648baf70-e7ef-5d14-8777-115e068e021a", "id": "CVE-2016-0762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0762 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-catalina-ha." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ha@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:1657e835-342a-5a25-b6f1-d2247aafb0f4", "id": "CVE-2016-0763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0763 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-catalina-ha." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ha@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:dbef8562-7e10-5684-a922-448f8aabd382", "id": "CVE-2016-5018", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5018 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-catalina-ha." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ha@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:572f9e93-aecc-5b38-8719-6682c0f61b8e", "id": "CVE-2016-6794", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6794 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-catalina-ha." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ha@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:1466d7ec-181d-56b0-af51-3393a6862a6f", "id": "CVE-2016-6796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6796 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-catalina-ha." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ha@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:8f440c9d-929e-5dea-96d4-cc7cf870e3a7", "id": "CVE-2016-6797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6797 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-catalina-ha." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ha@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:fdc144fa-5428-560e-94cd-674701d1c884", "id": "CVE-2016-6816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6816 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-catalina-ha." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ha@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:9fb43457-3af5-567c-96c9-b8030fbe42e0", "id": "CVE-2016-6817", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6817 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-catalina-ha." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ha@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:ef8aa2fa-5975-5b39-8b35-924388e6ae8d", "id": "CVE-2016-8745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8745 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-catalina-ha." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ha@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:20a14a42-7e99-5370-b2b1-043996d42fda", "id": "CVE-2016-8747", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8747 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-catalina-ha." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ha@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:64027990-5bad-5ea7-a42e-1a026d65ac74", "id": "CVE-2017-12617", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-12617 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-catalina-ha." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ha@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:60e29d3a-8549-5b09-88e7-0e34dde109e7", "id": "CVE-2017-5647", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5647 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-catalina-ha." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ha@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:41f7cb98-358e-54ec-bf39-003880ceaf00", "id": "CVE-2017-5648", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5648 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-catalina-ha." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ha@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:bb514a62-cd18-53bb-a5d7-fb6b3828f263", "id": "CVE-2017-5650", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5650 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-catalina-ha." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ha@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:8d6c0291-d080-541d-8455-ac093a52ca99", "id": "CVE-2017-5651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5651 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-catalina-ha." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ha@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:21dd8bd8-4213-58c2-8d67-7b3fef7777f3", "id": "CVE-2017-5664", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5664 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-catalina-ha." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ha@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:c73ac8dd-b9e3-56e3-b92c-a46381846ff9", "id": "CVE-2017-7674", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7674 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-catalina-ha." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ha@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:7710c5de-0e8f-55ba-8798-4ff56cbd770e", "id": "CVE-2017-7675", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7675 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-catalina-ha." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ha@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:73698437-95eb-52a2-86b1-e16b6a462582", "id": "CVE-2018-1304", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1304 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-catalina-ha." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ha@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:3489b963-14f3-525f-a66d-8790ae2c1daa", "id": "CVE-2018-1305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1305 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-catalina-ha." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ha@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:07d528a5-4c6a-5541-b6ae-5a696bee9753", "id": "CVE-2018-1336", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1336 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-catalina-ha." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ha@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:bb81e9d6-77a9-599f-aa2d-c0984f54a26b", "id": "CVE-2018-8014", "analysis": { "state": "not_affected", "detail": "Vulnerability CVE-2018-8014 does not affect version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-catalina-ha. Tomcat Version 8.5.100 is not vulnerable to CVE-2018-8014. Confirmed by manual code inspection and security advisories." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ha@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:4f4b54dd-8040-55fc-8297-e01c44893f1c", "id": "CVE-2018-8034", "analysis": { "state": "not_affected", "detail": "Vulnerability CVE-2018-8034 does not affect version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-catalina-ha. Tomcat Version 8.5.100 is not vulnerable to CVE-2018-8034. Confirmed by manual code inspection and security advisories." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ha@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:024080bb-5fc5-54bd-b60c-007ed6f56d22", "id": "CVE-2020-11996", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11996 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-catalina-ha." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ha@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:f7ea3466-4ad3-5efe-a6a0-a098dade4bde", "id": "CVE-2020-13934", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13934 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-catalina-ha." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ha@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:3fbad590-3505-5466-bf06-b915e8da49b3", "id": "CVE-2020-13943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13943 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-catalina-ha." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ha@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:9a5c1c42-09b2-5d48-8879-5e68ecf801af", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.tomcat:tomcat-catalina-ha 8.5.100-tuxcare.9." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ha@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:0af60a68-acef-50cf-b160-9e7f3f12e3ea", "id": "CVE-2020-9484", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-9484 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-catalina-ha." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ha@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:edbf533b-9bc9-5f6b-b463-37c347b21854", "id": "CVE-2021-24122", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-24122 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-catalina-ha." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ha@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:de23007c-c5e7-58f6-89b1-f074707aa845", "id": "CVE-2021-42340", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-42340 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-catalina-ha." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ha@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:ccbdc188-f4eb-5ae6-a65a-7712820400e1", "id": "CVE-2022-34305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-34305 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-catalina-ha." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ha@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:3e28900c-30eb-545e-8638-9e617ebf25d5", "id": "CVE-2022-45143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-45143 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-catalina-ha." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ha@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:b2ba3116-afbd-5818-9401-49375e95b0a2", "id": "CVE-2024-23672", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23672 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-catalina-ha." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ha@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:0bec40d9-47b5-59ad-99ab-d25467df9cad", "id": "CVE-2024-24549", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-24549 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-catalina-ha." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ha@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:a5cc1ff0-50d4-59f3-b3fc-8afe6340b226", "id": "CVE-2024-34750", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-34750 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-catalina-ha." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ha@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:04c794c7-8dc8-5f3a-bd75-822aa977212b", "id": "CVE-2024-38286", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38286 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-catalina-ha." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ha@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:377c06e0-8209-551d-bf74-4b5e3ff7d8d4", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-catalina-ha." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ha@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:4f39847f-25e1-5f95-b115-056b972c5e17", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-catalina-ha." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ha@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:2589e56b-82cf-5346-a3e8-3e22869ef16f", "id": "CVE-2024-52317", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52317 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-catalina-ha." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ha@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:19a4040c-a611-5521-babd-56dd28d8eb17", "id": "CVE-2024-54677", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-54677 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-catalina-ha." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ha@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:67d98378-d0d1-508e-b503-2997c8c2f974", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-catalina-ha." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ha@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:dd973ea5-6b7d-5a27-afa0-8d572173ac07", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-catalina-ha." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ha@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:c31a3312-8742-54a8-bf10-d4c6d5496c16", "id": "CVE-2025-31651", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31651 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-catalina-ha." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ha@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:0bbd997b-d1c1-5be7-a5f6-b0770df700b5", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-catalina-ha." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ha@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:c87af22d-0614-57c8-9b3a-aae9dc6c137c", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-catalina-ha." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ha@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:82a102b5-59b4-5936-99cc-bbe8b2088e0f", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-catalina-ha." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ha@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:e5df3102-dd9c-5835-8600-08bb819d5547", "id": "CVE-2025-49125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49125 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-catalina-ha." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ha@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:7c26621d-6839-5409-bd54-fbdc925206c0", "id": "CVE-2025-52434", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52434 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-catalina-ha." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ha@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:d0221881-de33-5269-a9e6-eb5d6576ba5b", "id": "CVE-2025-52520", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52520 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-catalina-ha." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ha@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:6236e1dc-b633-56dc-a9d8-8f46d812d854", "id": "CVE-2025-53506", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-53506 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-catalina-ha." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ha@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:b3ad5045-adf3-5df4-9458-3882933962da", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-catalina-ha." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ha@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:4f4a5762-5ae4-5b6f-b87d-9ecdb8206ae2", "id": "CVE-2025-55752", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55752 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-catalina-ha." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ha@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:89cf713d-d66b-5e3c-b24e-f0b2fb848ab9", "id": "CVE-2025-55754", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55754 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-catalina-ha." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ha@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:98138fe4-21ee-5f1e-9014-7e83edec3259", "id": "CVE-2025-61795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61795 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-catalina-ha." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ha@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:3cc7b67c-583a-508b-9430-eec8b58005e3", "id": "CVE-2025-66614", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66614 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-catalina-ha." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ha@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:c6bcd25a-98a7-506c-8772-7e1397f61243", "id": "CVE-2026-24733", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-24733 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-catalina-ha." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ha@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:a8b5ca01-d8fc-5ce5-97ac-65472d397481", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-catalina-ha." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ha@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:2eec646f-a0c1-534e-bc2f-8a04260ed64e", "id": "CVE-2026-25854", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-25854 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-catalina-ha." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ha@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:d23c28e7-2990-517d-805f-b600e3990b74", "id": "CVE-2026-29146", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-29146 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-catalina-ha." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ha@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:e62b3bf8-4499-5ced-ba33-a2fbcf0cf448", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-catalina-ha." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ha@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:3a52ab4b-ed94-5b57-babc-95e865480de7", "id": "CVE-2026-34486", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34486 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-catalina-ha." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ha@8.5.100-tuxcare.9" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ha@8.5.100-tuxcare.9" } ] }