{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:4b161cc3-d225-5d60-a31b-f2e6a22446d7", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.10", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-dbcp", "version": "8.5.100-tuxcare.10", "purl": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.10" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:8a9fb401-738f-5b51-923d-f4e025e27022", "id": "CVE-2016-0762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0762 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:24b46914-96e9-5853-a262-e5b77eb32b37", "id": "CVE-2016-0763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0763 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:62c0cd52-73e6-5031-9159-62f608f8fa8b", "id": "CVE-2016-5018", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5018 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:44706e05-a161-5eb9-a571-f1fedd7c0702", "id": "CVE-2016-6794", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6794 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:66a01bb5-cb5c-56ac-89dc-64966179cd8e", "id": "CVE-2016-6796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6796 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:8a176f76-fe6a-5e7a-b463-f5c4859ffce7", "id": "CVE-2016-6797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6797 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:b8c6d7a3-f3bb-5070-a3a1-ea581328ab36", "id": "CVE-2016-6816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6816 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:7ad4bc78-e97f-5fa4-99e4-02fa47322cae", "id": "CVE-2016-6817", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6817 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:dc0dcbd4-ee0b-5288-b573-91de845fca5b", "id": "CVE-2016-8745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8745 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:477f8209-31ca-592e-84f6-51224d0c9957", "id": "CVE-2016-8747", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8747 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:eb433e7d-50bd-5880-9741-8a5a22c43213", "id": "CVE-2017-12617", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-12617 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:52cb9e3c-4e10-5bc3-98c4-348e6ac8931d", "id": "CVE-2017-5647", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5647 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:68d77754-6bd4-5c30-9453-05dedab1eae0", "id": "CVE-2017-5648", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5648 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:8ca152ef-9fe3-5848-9670-f52614ef4d84", "id": "CVE-2017-5650", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5650 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:16cb7dd0-22ef-5f51-9602-6f2de93b4934", "id": "CVE-2017-5651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5651 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:cb410f28-4486-585b-aa05-c1044ca58dcd", "id": "CVE-2017-5664", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5664 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:eeeba25b-a23f-58a6-b1aa-df59f48bf7bf", "id": "CVE-2017-7674", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7674 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:f11f67f0-c1ea-550e-a451-b388a226f997", "id": "CVE-2017-7675", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7675 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:5095e6a9-541a-5bbe-aa8b-4c7745ba9904", "id": "CVE-2018-1304", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1304 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:e2610c4c-b162-57a4-a4a4-4a26b4610876", "id": "CVE-2018-1305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1305 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:abd16702-2808-5522-879b-1c95fee3a438", "id": "CVE-2018-1336", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1336 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:c6f4f3e8-8265-584a-acda-5a80dd3f3e5e", "id": "CVE-2018-8014", "analysis": { "state": "not_affected", "detail": "Vulnerability CVE-2018-8014 does not affect version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-dbcp. Tomcat Version 8.5.100 is not vulnerable to CVE-2018-8014. Confirmed by manual code inspection and security advisories." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:6e0c00c5-f0a3-5bc3-9888-e327e7741655", "id": "CVE-2018-8034", "analysis": { "state": "not_affected", "detail": "Vulnerability CVE-2018-8034 does not affect version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-dbcp. Tomcat Version 8.5.100 is not vulnerable to CVE-2018-8034. Confirmed by manual code inspection and security advisories." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:8a054869-2945-587e-b06a-9628d9cd3947", "id": "CVE-2020-11996", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11996 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:ec4f4d66-43ac-5664-ac06-deb1d6675ccf", "id": "CVE-2020-13934", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13934 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:5560e5e2-5ad5-594d-99dd-6157301e023a", "id": "CVE-2020-13943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13943 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:2a54e2dd-d4e5-516a-81b7-a10081f78646", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.tomcat:tomcat-dbcp 8.5.100-tuxcare.10." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:8dd086e4-24e9-5fa6-a203-c3f748557d3a", "id": "CVE-2020-9484", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-9484 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:9fe2c1e9-880e-5202-9d2c-e381d798ffc0", "id": "CVE-2021-24122", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-24122 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:2906bd45-b7fa-545e-80b0-b653f5753661", "id": "CVE-2021-42340", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-42340 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:bd50fd25-4eea-5786-b615-d368c5eee152", "id": "CVE-2022-34305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-34305 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:a9498985-080e-5fb4-b366-70bf36b1cfbc", "id": "CVE-2022-45143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-45143 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:bc3805c3-83f4-5e32-b912-c347eb816909", "id": "CVE-2024-23672", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23672 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:6fa902cb-4971-57cb-a426-3d96668cfef8", "id": "CVE-2024-24549", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-24549 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:d4e93320-5dfa-5de1-8c40-841df56a8b68", "id": "CVE-2024-34750", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-34750 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:0746c2cf-c4a6-5831-9c7a-fe7c39040e7d", "id": "CVE-2024-38286", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38286 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:4ac40bcb-f371-5d50-b30c-e6587098b059", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:91ab1fe2-6696-54dd-b101-def8b26eb074", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:a5c7901b-bfbb-5e66-bf81-457217a7fea2", "id": "CVE-2024-52317", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52317 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:a549d512-a957-5cce-bcb7-e1641f0e2cea", "id": "CVE-2024-54677", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-54677 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:94dbc585-e0ee-5613-8991-1233f5eb77ea", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:c4a9620a-3a32-5ccd-a45d-eb08f0ee5c7a", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:fec5300e-7a6f-5045-8a07-311b7c77cb54", "id": "CVE-2025-31651", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31651 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:74b2fea0-e74d-5269-ab5d-a24936acc18d", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:89698279-7e64-552a-a980-ca25a99c1a78", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:716c4fbe-af2a-5e7c-af50-2214a4b7de65", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:0a3af86d-9cc3-54a5-9528-12a845c28ff4", "id": "CVE-2025-49125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49125 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:d5184aff-4f0a-5329-a4e2-01ecf27fa633", "id": "CVE-2025-52434", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52434 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:affb1a64-53aa-581c-85b1-6798ef069863", "id": "CVE-2025-52520", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52520 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:cc824898-f3ca-520d-a05e-36553a236ae7", "id": "CVE-2025-53506", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-53506 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:495627bb-648d-5d92-86fe-9675a458e057", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:217247d3-16a8-5b4a-80d9-be4c6dcbc2a6", "id": "CVE-2025-55752", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55752 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:3bbcf36e-4efa-5396-a0e1-930e327cc326", "id": "CVE-2025-55754", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55754 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:8078c989-f12d-5d4f-b11b-234030e1591f", "id": "CVE-2025-61795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61795 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:795a9220-7f74-5126-b950-48a55584c1bf", "id": "CVE-2025-66614", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66614 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:5222f688-2298-5e79-9921-c649c07f081d", "id": "CVE-2026-24733", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-24733 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:209710fa-8c7e-5c9d-84f8-82105c1fc1e5", "id": "CVE-2026-24880", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-24880 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:96ead04b-befb-5c09-8a30-e8cefd407628", "id": "CVE-2026-25854", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-25854 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:12a2ce1e-9c88-53de-a55c-ca5820739a37", "id": "CVE-2026-29146", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-29146 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:0dcdb373-db62-5038-aadf-f155f0276a5a", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:c1c09906-e40e-5acc-946d-c9391501489c", "id": "CVE-2026-34486", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34486 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.10" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.10" } ] }