{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:c4325518-013b-5d2d-94ab-5e61359c9955", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ws@7.0.109-tuxcare.1", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-catalina-ws", "version": "7.0.109-tuxcare.1", "purl": "pkg:maven/org.apache.tomcat/tomcat-catalina-ws@7.0.109-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:d598ee92-02ae-53b8-943b-b74da3fd211b", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ws@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4e9e4251-a570-5a32-9fdc-1e79afcbf83c", "id": "CVE-2015-5174", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5174 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ws@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6996b668-d173-5d3e-a6c6-6b1c77aa2f29", "id": "CVE-2015-5346", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5346 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ws@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7f43dc77-786e-5408-8f2d-4e0a341eab66", "id": "CVE-2016-0706", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0706 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ws@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d27dde03-9e80-5ebb-ad2c-ec3e23703e04", "id": "CVE-2016-0762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0762 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ws@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:32fa3249-d48f-550f-8c6e-84ce32a1e3ad", "id": "CVE-2016-0763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0763 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ws@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b309243c-6316-5a0f-8513-56f05ef1303f", "id": "CVE-2016-5018", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5018 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ws@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:246bf1e7-fc71-589d-ac42-86e4d3675a00", "id": "CVE-2016-6794", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6794 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ws@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e3fc13e0-cb32-57ea-83a6-960dae648dc3", "id": "CVE-2016-6796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6796 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ws@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4024f9c7-649f-588f-a271-c20c744caae9", "id": "CVE-2016-6797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6797 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ws@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a14ef7b4-3e07-577e-bce3-c7e50a236037", "id": "CVE-2016-6816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6816 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ws@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5f712635-1774-57b6-8adc-353af97123eb", "id": "CVE-2016-6817", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6817 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ws@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:edc06909-81bd-5ca8-8eb3-6a370ca5b54a", "id": "CVE-2016-8745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8745 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ws@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7f2f9d85-3afe-570c-bd64-24373b71322a", "id": "CVE-2016-8747", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8747 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ws@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:665fb294-1a4b-5d3a-9405-cf6549cf8934", "id": "CVE-2017-12617", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-12617 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ws@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f0ec793e-54e9-52cc-a1ac-482b8519e55d", "id": "CVE-2017-5647", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5647 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ws@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7ac739ea-3d04-5290-ba67-0d73f3042fe8", "id": "CVE-2017-5648", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5648 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ws@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:853f5a4d-d6a6-5db7-9573-32721530883c", "id": "CVE-2017-5650", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5650 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ws@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b17ecb63-8685-5b9e-ab37-58797f774815", "id": "CVE-2017-5651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5651 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ws@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0c08106f-c837-5c1e-9f74-26bc5cf69680", "id": "CVE-2017-5664", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5664 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ws@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:86808131-6a51-5457-8b43-29ff9cee6fa0", "id": "CVE-2017-7674", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7674 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ws@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:64a298a5-ae35-5db0-9a4f-36f0d2aacfa3", "id": "CVE-2017-7675", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7675 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ws@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4e6f8106-a997-54d2-8681-3bd07d005f25", "id": "CVE-2018-1304", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1304 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ws@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0a36d202-e574-55bc-b31a-7fbd2840f85a", "id": "CVE-2018-1305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1305 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ws@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0a8df77a-d027-53ff-91bf-061e8a05d7c6", "id": "CVE-2018-1336", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1336 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ws@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3723b633-8e02-54fc-bbc2-1d3d116cf4ef", "id": "CVE-2018-8014", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8014 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ws@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:43cc3fd9-13ae-5a2b-b6b0-0a1c95ce9ce6", "id": "CVE-2018-8034", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8034 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ws@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e8e4ab8e-4ff4-54b2-b155-9fe4fdd2d8a8", "id": "CVE-2019-12418", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-12418 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ws@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e5369e3a-a545-5dac-8c20-7e4e09138372", "id": "CVE-2020-11996", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11996 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ws@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5c4f0e83-c28e-576e-a4b1-09225774337e", "id": "CVE-2020-13934", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13934 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ws@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8fa374cc-4969-5142-be1f-ebbce51cd135", "id": "CVE-2020-13943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13943 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ws@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:841624be-1160-566e-97f1-99279336e785", "id": "CVE-2020-9484", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-9484 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ws@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e6299824-84ef-5853-8f66-050279afd322", "id": "CVE-2021-24122", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-24122 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ws@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e801de76-e2c8-5ef5-beb3-93d98f76cf7f", "id": "CVE-2021-30639", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-30639 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ws@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:007e0e9a-5498-5c4e-b93c-0f8f7587ef50", "id": "CVE-2021-42340", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-42340 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ws@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:03aaaa23-17fb-5cc8-9749-fee0e54c2848", "id": "CVE-2022-23181", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-23181 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ws@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cfa40f96-cc57-5c3b-accf-c41eabd3d6c6", "id": "CVE-2022-34305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-34305 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ws@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:46bd09d7-70b6-53ee-9882-a6f32c43b7e9", "id": "CVE-2022-45143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-45143 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ws@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:542ab7bb-7646-52eb-bd01-dabecafa0583", "id": "CVE-2024-24549", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-24549 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ws@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1d78543f-314f-52f5-b840-c8f3340dacfb", "id": "CVE-2024-38286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38286 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ws@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d42d9618-2867-5804-a15e-53a1e87fa08a", "id": "CVE-2024-52316", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-52316 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ws@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f618d4f4-0491-52ca-b7a2-71a008adc742", "id": "CVE-2025-31650", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-31650 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ws@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8e97c922-dfcc-53a0-adea-ef9eab7850b5", "id": "CVE-2025-31651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-31651 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ws@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b9fdfb48-6973-5380-956c-60b6f497b60d", "id": "CVE-2025-48988", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-48988 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ws@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:db6922e6-00f3-5117-b64c-fe9ee5448bf4", "id": "CVE-2025-49125", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-49125 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ws@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fd3b7957-edea-55ad-af53-12ce2de41c8a", "id": "CVE-2025-66614", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66614 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ws@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6cf3032f-a7bf-5d41-a50f-8b69ba3336fb", "id": "CVE-2026-24733", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24733 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ws@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2cb88a05-5ffc-5d3e-97cb-5bb8ad0d2d76", "id": "CVE-2026-24880", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-24880 is fixed in version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ws@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2c2fd305-3914-50f7-b48d-ae2a68ecaf6b", "id": "CVE-2026-29145", "analysis": { "state": "not_affected", "detail": "Vulnerability CVE-2026-29145 does not affect version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-ws. The official CVE record (https://www.cve.org/CVERecord?id=CVE-2026-29145) limits the affected versions to Apache Tomcat 9.0.13\u20139.0.115, 10.1.0-M7\u201310.1.52, and 11.0.0-M1\u201311.0.18. Version 7.0.109 is not within any of these ranges" }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ws@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:17e3cbb8-0785-52ca-bbb5-1524ca3feb6a", "id": "CVE-2026-29146", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29146 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ws@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e9442877-efd3-5095-a743-2c8fb8c574ba", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-catalina-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ws@7.0.109-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-catalina-ws@7.0.109-tuxcare.1" } ] }