{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:5aa06c8c-27b8-57c7-93e1-1afffb36be68", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-fr@9.0.90-tuxcare.8", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-i18n-fr", "version": "9.0.90-tuxcare.8", "purl": "pkg:maven/org.apache.tomcat/tomcat-i18n-fr@9.0.90-tuxcare.8" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:b0f0e50d-5fe7-5c00-9ccb-8e1e5d72229d", "id": "CVE-2020-11996", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11996 affects version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-fr." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-fr@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:5e45df65-e32f-54b7-9a73-749439050580", "id": "CVE-2020-13934", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13934 affects version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-fr." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-fr@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:95c3e01b-abba-5e5e-a17b-9510b7e18d3d", "id": "CVE-2020-13943", "analysis": { "state": "not_affected", "detail": "Vulnerability CVE-2020-13943 does not affect version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-fr. Fix for CVE-202-13943 for this version has been already backported by the original developers, so brunch 9.0.90 is not vulnerable" }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-fr@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:6de82aa4-f4e1-5d78-832f-2fae5d7fb63b", "id": "CVE-2020-9484", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-9484 affects version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-fr." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-fr@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:7b9286cc-99ae-546e-950a-ad1bcf3fa76c", "id": "CVE-2021-24122", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-24122 affects version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-fr." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-fr@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:17c68747-1396-530e-b3f9-a9c084232920", "id": "CVE-2021-42340", "analysis": { "state": "not_affected", "detail": "Vulnerability CVE-2021-42340 does not affect version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-fr. Patches already applied: 31d62426645824bdfe076a0c0eafa904d90b4fb9 (already in target via 80f1438ec4 'Close WebConnection', a37a6d312c 'Fix BZ 68884 - improve handling of large scale WebSocket disconnects')" }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-fr@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:018ae687-a626-5bf8-bcee-70dcbf2c5698", "id": "CVE-2022-34305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-34305 affects version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-fr." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-fr@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:136a8be4-7d22-5a07-8029-43748479d79f", "id": "CVE-2022-45143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-45143 affects version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-fr." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-fr@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:1e90048b-0f60-5127-b519-5f1125e1cb07", "id": "CVE-2024-23672", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23672 affects version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-fr." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-fr@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:d853e884-a262-57b4-90fb-c9a40d7e8eac", "id": "CVE-2024-24549", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-24549 affects version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-fr." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-fr@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:bcd009de-88d1-5c3f-9590-441f966d8a13", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-fr." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-fr@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:ca916b83-8ae9-5db2-987f-fd8e4cc151c5", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-fr." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-fr@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:965630ee-0035-5da2-82c6-b55b263fb71e", "id": "CVE-2024-54677", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-54677 affects version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-fr." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-fr@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:b189f599-ed09-5dc9-87c0-0f133c9b412c", "id": "CVE-2024-56337", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-56337 is fixed in version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-fr." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-fr@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:5dac86a7-3036-50d7-b163-200cb825f4b1", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-fr." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-fr@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:baa6c70d-d69d-556a-ad2e-e2404c413c58", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-fr." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-fr@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:51fcbc30-2687-5539-8bb8-1947950d8351", "id": "CVE-2025-31651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-31651 affects version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-fr." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-fr@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:fc17ea9d-e7fb-51fb-90c8-5018e1ebf7f2", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-fr." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-fr@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:aa40c617-6eae-58ff-ab2a-d0a46acf657a", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-fr." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-fr@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:d734ffd9-d3a0-5dd8-aa20-7b437e6ad8f8", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-fr." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-fr@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:56bf24ec-931b-5a6a-be18-4e2476e13031", "id": "CVE-2025-49124", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49124 is fixed in version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-fr." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-fr@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:f4f61a28-dbd7-5cb2-bd8b-f63211b6d6b1", "id": "CVE-2025-49125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49125 is fixed in version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-fr." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-fr@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:f1f7b72d-5d0f-5d65-8622-2037cf1f7454", "id": "CVE-2025-52434", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52434 is fixed in version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-fr." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-fr@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:c1531da4-5fe5-54e8-be80-ee2127b69a21", "id": "CVE-2025-52520", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52520 is fixed in version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-fr." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-fr@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:1fc1a7d0-bf80-564e-87ec-00f1a362b45c", "id": "CVE-2025-53506", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-53506 is fixed in version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-fr." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-fr@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:33d055f3-7a21-5d27-9e90-3d4f7621dad8", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-fr." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-fr@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:abb9cacb-a40b-586e-a609-a21ff2008826", "id": "CVE-2025-55752", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55752 affects version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-fr." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-fr@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:6fb69fe1-1d7d-586e-be1e-583c81bdd600", "id": "CVE-2025-55754", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55754 is fixed in version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-fr." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-fr@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:26a6eb37-b75d-5290-8f95-7095067e6889", "id": "CVE-2025-61795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61795 is fixed in version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-fr." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-fr@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:adf6ffca-07b4-5b70-8dfc-6364e374e624", "id": "CVE-2025-66614", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66614 is fixed in version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-fr." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-fr@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:6c2d4875-8faa-5177-88db-a55c869949f5", "id": "CVE-2026-24733", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-24733 is fixed in version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-fr." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-fr@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:13daa3b6-caf0-5cc0-ba07-6a5e018880c5", "id": "CVE-2026-24734", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24734 affects version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-fr." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-fr@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:5e8617d3-8431-5596-a537-489edef7fb18", "id": "CVE-2026-24880", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-24880 is fixed in version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-fr." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-fr@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:ed40ac03-0bfb-5eaf-ac83-6f7d8a8a1603", "id": "CVE-2026-25854", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-25854 is fixed in version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-fr." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-fr@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:154847c9-c58b-5d22-a500-a8f2f5ba86fc", "id": "CVE-2026-29145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29145 affects version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-fr." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-fr@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:3f3ec60c-6e52-54c8-a8b6-c73bb775ac6f", "id": "CVE-2026-29146", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-29146 is fixed in version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-fr." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-fr@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:7691792b-aa1d-5b57-b070-fa2c60157be1", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-fr." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-fr@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:d89753e6-7d80-5e34-900b-e6566fea6111", "id": "CVE-2026-34483", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-34483 is fixed in version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-fr." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-fr@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:fdb02de6-8a31-579e-9474-56e1b44ab479", "id": "CVE-2026-34486", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34486 affects version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-fr." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-fr@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:e7a81b6e-a49a-53cd-929c-ff47bed27c2d", "id": "CVE-2026-34487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-34487 is fixed in version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-fr." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-fr@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:d414b855-2e48-5aff-a35e-25bf5f2cd7b4", "id": "CVE-2026-41284", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41284 affects version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-fr." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-fr@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:cc60637a-353d-5c90-99e7-e46dd246bbcb", "id": "CVE-2026-41293", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41293 affects version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-fr." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-fr@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:06935108-dc5a-5c70-8cac-7156913baa11", "id": "CVE-2026-42498", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42498 affects version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-fr." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-fr@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:4ec6c85b-50f4-5e93-a257-ff60bb5f3df8", "id": "CVE-2026-43512", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-43512 affects version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-fr." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-fr@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:86b9b31b-86a9-5636-8292-75aab9aebbdb", "id": "CVE-2026-43513", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-43513 affects version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-fr." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-fr@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:f10cac81-1960-57c5-8e6d-74eaaa47a608", "id": "CVE-2026-43514", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-43514 affects version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-fr." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-fr@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:74223976-49c0-5c2f-875f-569dd03ab42e", "id": "CVE-2026-43515", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-43515 affects version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-fr." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-fr@9.0.90-tuxcare.8" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-fr@9.0.90-tuxcare.8" } ] }