{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:12ffb482-0ce9-5ce1-a7a7-e24742da5c89", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.9", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-dbcp", "version": "8.5.100-tuxcare.9", "purl": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.9" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:3ee0cd78-bf50-56ff-a108-ad9313ebc7e4", "id": "CVE-2016-0762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0762 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:4ecd3767-9de0-5225-a7cd-6056502ebf68", "id": "CVE-2016-0763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0763 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:2c43e072-9c65-5cdf-9af5-ba2b9818b1b3", "id": "CVE-2016-5018", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5018 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:95e3f188-bf68-5aef-8f5f-dde6c9c8d8d1", "id": "CVE-2016-6794", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6794 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:4d7633e5-ce19-5289-a220-237980f6ac9f", "id": "CVE-2016-6796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6796 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:47f305d4-c3a5-56f8-b016-718b1fa53ff4", "id": "CVE-2016-6797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6797 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:cfc9ced9-8e67-5bf4-978f-0956d1a7f886", "id": "CVE-2016-6816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6816 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:1da584a3-b784-5068-99f7-29e3f98fb776", "id": "CVE-2016-6817", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6817 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:64d1996a-c77e-522e-8dbd-4027508a0305", "id": "CVE-2016-8745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8745 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:84c9b0f2-2f76-5a5a-b921-65b40fb20866", "id": "CVE-2016-8747", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8747 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:77acda6c-3cc3-52f5-a54e-a6ab43406949", "id": "CVE-2017-12617", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-12617 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:39b338d8-328e-52e6-9214-dac85ca5f2e8", "id": "CVE-2017-5647", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5647 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:52f6a7fc-0088-5097-b1c3-8a52c4a3b3fa", "id": "CVE-2017-5648", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5648 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:591404f0-ea1a-5928-aa89-ce6c2ab15143", "id": "CVE-2017-5650", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5650 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:3553fcfe-838a-5402-b025-aea24623a776", "id": "CVE-2017-5651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5651 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:31d545a8-0ed3-53b1-883a-6295c4bd7fc2", "id": "CVE-2017-5664", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5664 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:7cb2e070-7bfb-5ac3-84b7-fe84bc1c3e8b", "id": "CVE-2017-7674", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7674 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:b7a5b98b-b0c5-54c5-9369-1f87289a271c", "id": "CVE-2017-7675", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7675 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:660ecf73-04b3-5a38-a3f3-acb175e4d437", "id": "CVE-2018-1304", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1304 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:4989df02-5a82-5c85-a534-2262a8d93fc4", "id": "CVE-2018-1305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1305 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:bfafd46e-f0e5-5ee5-83de-8bd1ba11af38", "id": "CVE-2018-1336", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1336 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:1a346b35-386b-5c8c-86f0-a4b3b243b433", "id": "CVE-2018-8014", "analysis": { "state": "not_affected", "detail": "Vulnerability CVE-2018-8014 does not affect version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-dbcp. Tomcat Version 8.5.100 is not vulnerable to CVE-2018-8014. Confirmed by manual code inspection and security advisories." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:bd76c55f-e520-5d3e-9953-aeb3a02bd172", "id": "CVE-2018-8034", "analysis": { "state": "not_affected", "detail": "Vulnerability CVE-2018-8034 does not affect version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-dbcp. Tomcat Version 8.5.100 is not vulnerable to CVE-2018-8034. Confirmed by manual code inspection and security advisories." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:971493b3-0cf1-579e-a98a-f0bed0b864a4", "id": "CVE-2020-11996", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11996 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:8ba25fb3-4a79-563c-a14a-ea538037d69f", "id": "CVE-2020-13934", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13934 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:f7ad1d9e-a40d-5a23-8c73-19ea9dbdc8e1", "id": "CVE-2020-13943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13943 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:43e04933-8b2c-558c-87c9-8a2918463943", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.tomcat:tomcat-dbcp 8.5.100-tuxcare.9." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:fa2c3954-d518-513c-80bc-0899e54ec02a", "id": "CVE-2020-9484", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-9484 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:6e800210-975f-557c-a1c0-ab479182c796", "id": "CVE-2021-24122", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-24122 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:d7b0dad3-6a09-5488-b903-59a22b6bafc4", "id": "CVE-2021-42340", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-42340 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:3a80dbc0-62ac-5439-afec-95bb460091dc", "id": "CVE-2022-34305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-34305 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:6925855e-a299-5a4a-9e76-180dd9339972", "id": "CVE-2022-45143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-45143 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:8753c8fd-5276-57ee-8c5f-fad4a5ffed51", "id": "CVE-2024-23672", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23672 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:d7dadaaa-8877-5d0b-ac0a-de5fbbc78ffa", "id": "CVE-2024-24549", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-24549 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:60cb6dae-c1da-5f28-948d-68cbaab54489", "id": "CVE-2024-34750", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-34750 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:565c12d9-cb51-5b15-8240-118e660370e8", "id": "CVE-2024-38286", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38286 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:1158a12d-3bf7-5534-8538-cd3b6f2a4091", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:ac8039dd-325a-5cb5-ae52-2b85c7308236", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:aae2428f-a3f8-5cae-ab03-6a1c213cf8a8", "id": "CVE-2024-52317", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52317 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:acd9bbfc-07cf-5639-9fdd-0ee2ba41a1ed", "id": "CVE-2024-54677", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-54677 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:0a789da7-5bae-5195-8648-47f7477cb6c6", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:9a64845a-78fa-58a4-b57c-634c8163a85d", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:d6c35682-ab38-5bd4-b26c-6bdd46e6b0be", "id": "CVE-2025-31651", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31651 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:e85d4a6a-ec3c-53d3-aa2e-fd1bf87fd54d", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:de79bec1-2c8b-5d76-ab02-7a076cda5459", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:49eb3445-2524-54f7-b941-1ae9102a21e2", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:ca01ad55-1fbf-522e-9abe-3b12f3842dc5", "id": "CVE-2025-49125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49125 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:0dc4696c-e64a-5db9-a0ff-24e31a27aacd", "id": "CVE-2025-52434", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52434 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:e36572e6-cdd1-56a7-a3ce-1b6c2d0abb0b", "id": "CVE-2025-52520", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52520 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:5b8473d7-229b-5e14-9f6d-22ffc16f4d7b", "id": "CVE-2025-53506", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-53506 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:14a44a3a-cd69-569e-97f2-d01d33d51fcd", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:c7c897fe-cf62-59e4-84fd-5565bd362319", "id": "CVE-2025-55752", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55752 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:7d66f586-fe0a-5829-80fe-217deefef5e0", "id": "CVE-2025-55754", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55754 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:5a44fb61-1efa-5dff-8235-3001c1061aac", "id": "CVE-2025-61795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61795 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:b4d51259-2415-5b02-b68d-bffb47d1f594", "id": "CVE-2025-66614", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66614 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:cc562b14-0fb0-5fe0-b147-ce2e8aaf94f6", "id": "CVE-2026-24733", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-24733 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:953cfdbd-a25f-59e5-9280-2b453ea07316", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:313f21f2-c453-5afa-943f-6fa4b8b11ce2", "id": "CVE-2026-25854", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-25854 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:400dbb6d-ed19-5fe4-814e-29378fa5e8e6", "id": "CVE-2026-29146", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-29146 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:76cf97eb-1a21-5baa-a9b5-dd7eb3d0c355", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:cad027be-23bc-5eba-86ef-e177e0697eaf", "id": "CVE-2026-34486", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34486 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.9" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.9" } ] }