{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:dcebf64d-19c8-5752-8565-43138f25c5f4", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-jmx-remote@7.0.109-tuxcare.1", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-catalina-jmx-remote", "version": "7.0.109-tuxcare.1", "purl": "pkg:maven/org.apache.tomcat/tomcat-catalina-jmx-remote@7.0.109-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:11badc06-cdb0-5c6c-8522-5b25bc497cd3", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-jmx-remote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-jmx-remote@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3b87439b-6555-59bd-a67c-3e7dba5e4103", "id": "CVE-2015-5174", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5174 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-jmx-remote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-jmx-remote@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:687c70c8-827b-5b8a-9753-5d2a897a0372", "id": "CVE-2015-5346", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5346 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-jmx-remote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-jmx-remote@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:281eec4b-97fb-55d5-9467-2b35fc413441", "id": "CVE-2016-0706", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0706 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-jmx-remote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-jmx-remote@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:132fd631-4dbc-5fa6-96f6-089738ca9932", "id": "CVE-2016-0762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0762 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-jmx-remote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-jmx-remote@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d9919ecc-03cd-5f59-ab8a-e01037fc4800", "id": "CVE-2016-0763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0763 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-jmx-remote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-jmx-remote@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b6a2608d-64f4-55f8-b10e-5c07927da34b", "id": "CVE-2016-5018", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5018 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-jmx-remote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-jmx-remote@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bc36dce0-07f9-52c8-ad6f-3b7d8b8cd553", "id": "CVE-2016-6794", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6794 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-jmx-remote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-jmx-remote@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4146edbc-3fef-52df-82ee-3cf52b1da6c6", "id": "CVE-2016-6796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6796 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-jmx-remote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-jmx-remote@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:37e4cbbf-055c-5a86-b1e8-efb2077fd9b3", "id": "CVE-2016-6797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6797 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-jmx-remote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-jmx-remote@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1070d856-1883-5e0c-97fd-836462d2237b", "id": "CVE-2016-6816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6816 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-jmx-remote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-jmx-remote@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f3011d43-d8f0-584f-85a2-f7ee1eecf73e", "id": "CVE-2016-6817", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6817 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-jmx-remote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-jmx-remote@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c19b35b0-d687-5879-8679-5aafb2533c9c", "id": "CVE-2016-8745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8745 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-jmx-remote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-jmx-remote@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:34b91d48-e46b-544c-b69b-53ffe5e1644d", "id": "CVE-2016-8747", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8747 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-jmx-remote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-jmx-remote@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3407cf36-3974-5fac-a485-7964306c33de", "id": "CVE-2017-12617", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-12617 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-jmx-remote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-jmx-remote@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2754fa59-9076-5397-b3a1-29098b1c067f", "id": "CVE-2017-5647", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5647 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-jmx-remote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-jmx-remote@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c00b02a1-0bab-563f-8b7e-fbc14f33398c", "id": "CVE-2017-5648", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5648 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-jmx-remote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-jmx-remote@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6be0e8ad-3b1e-5714-89eb-4887c44fae3f", "id": "CVE-2017-5650", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5650 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-jmx-remote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-jmx-remote@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b7e77fb6-d8ec-5433-a642-809d13e03380", "id": "CVE-2017-5651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5651 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-jmx-remote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-jmx-remote@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:10e48053-9bec-595d-9e36-c322fae374ce", "id": "CVE-2017-5664", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5664 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-jmx-remote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-jmx-remote@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:311d155a-d437-58f2-8636-e383093661ac", "id": "CVE-2017-7674", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7674 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-jmx-remote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-jmx-remote@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e6205186-c832-5bf9-9458-29448597b56a", "id": "CVE-2017-7675", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7675 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-jmx-remote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-jmx-remote@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:907e757b-60e6-5632-bff7-6bc92d38b258", "id": "CVE-2018-1304", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1304 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-jmx-remote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-jmx-remote@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6939c90b-3d68-5a9c-9d40-ef918b5811f3", "id": "CVE-2018-1305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1305 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-jmx-remote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-jmx-remote@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0b3f2869-dc2e-5031-98f2-bf8606bb7a36", "id": "CVE-2018-1336", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1336 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-jmx-remote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-jmx-remote@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a7fc3a88-efff-5600-ae82-43718e53189f", "id": "CVE-2018-8014", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8014 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-jmx-remote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-jmx-remote@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2783b235-f807-539a-8e89-903b0adda594", "id": "CVE-2018-8034", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8034 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-jmx-remote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-jmx-remote@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d63ca05c-6dcd-5953-85d1-3a0996a9f55f", "id": "CVE-2019-12418", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-12418 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-jmx-remote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-jmx-remote@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0958afa2-87e1-5398-9252-2b667066fcac", "id": "CVE-2020-11996", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11996 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-jmx-remote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-jmx-remote@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f8951f9f-7d24-5631-bbee-14ab2b207511", "id": "CVE-2020-13934", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13934 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-jmx-remote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-jmx-remote@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7b71ef2a-146f-5817-a487-35f20fd2fa45", "id": "CVE-2020-13943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13943 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-jmx-remote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-jmx-remote@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:859fbe76-1048-5482-971f-2b945578db4b", "id": "CVE-2020-9484", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-9484 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-jmx-remote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-jmx-remote@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:63608b9c-2a68-546b-8a14-66186582bd22", "id": "CVE-2021-24122", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-24122 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-jmx-remote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-jmx-remote@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ec368914-495f-580d-b10e-18aef908a686", "id": "CVE-2021-30639", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-30639 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-jmx-remote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-jmx-remote@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e63a5cd5-e226-5538-b33f-acea9e0b9a0f", "id": "CVE-2021-42340", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-42340 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-jmx-remote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-jmx-remote@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e09bc080-a2f6-5390-8647-baa40d8b8bb2", "id": "CVE-2022-23181", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-23181 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-jmx-remote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-jmx-remote@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4126d146-b720-570a-8852-5ec0d3481ea4", "id": "CVE-2022-34305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-34305 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-jmx-remote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-jmx-remote@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c636307f-21f2-5aa1-9d71-8902fe2cac59", "id": "CVE-2022-45143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-45143 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-jmx-remote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-jmx-remote@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:506686ab-dc1c-5b72-aa0f-695952f3f50d", "id": "CVE-2024-24549", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-24549 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-jmx-remote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-jmx-remote@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3de21736-5645-5812-b505-f99aa74462f0", "id": "CVE-2024-38286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38286 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-jmx-remote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-jmx-remote@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1e1f0933-64e6-5a8e-aa58-b727a8986f92", "id": "CVE-2024-52316", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-52316 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-jmx-remote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-jmx-remote@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4dc6bb88-5a32-54d0-9833-e17d649bf4ca", "id": "CVE-2025-31650", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-31650 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-jmx-remote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-jmx-remote@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:739819b4-a3d4-5d38-9b40-e692fe9c9bbe", "id": "CVE-2025-31651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-31651 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-jmx-remote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-jmx-remote@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:70ed8338-32c7-534c-9c98-557fda4e30c2", "id": "CVE-2025-48988", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-48988 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-jmx-remote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-jmx-remote@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b598c891-3438-5ba6-a34d-95bc621df96d", "id": "CVE-2025-49125", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-49125 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-jmx-remote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-jmx-remote@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5be0dba2-af43-59a2-939b-940cef682c77", "id": "CVE-2025-66614", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66614 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-jmx-remote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-jmx-remote@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ada155a6-d0a4-5ddb-9f07-8041a942de0d", "id": "CVE-2026-24733", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24733 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-jmx-remote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-jmx-remote@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ef6193ec-c4dc-5e1e-a9ae-ba1385738eea", "id": "CVE-2026-24880", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-24880 is fixed in version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-jmx-remote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-jmx-remote@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dd27dc7c-4b01-5727-9f05-f0f2571e37be", "id": "CVE-2026-29145", "analysis": { "state": "not_affected", "detail": "Vulnerability CVE-2026-29145 does not affect version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-jmx-remote. The official CVE record (https://www.cve.org/CVERecord?id=CVE-2026-29145) limits the affected versions to Apache Tomcat 9.0.13\u20139.0.115, 10.1.0-M7\u201310.1.52, and 11.0.0-M1\u201311.0.18. Version 7.0.109 is not within any of these ranges" }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-jmx-remote@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f555edb8-63cd-5826-a277-a2d8ab47a836", "id": "CVE-2026-29146", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29146 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-jmx-remote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-jmx-remote@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7afaf2d5-d3d5-5767-a022-bad568b7fe82", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-jmx-remote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-jmx-remote@7.0.109-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-jmx-remote@7.0.109-tuxcare.1" } ] }