{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:895518f3-3092-5b76-b3ed-a311a8ff4347", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.8", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-i18n-ko", "version": "9.0.90-tuxcare.8", "purl": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.8" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:c2467c9d-bb9c-5805-849d-82ced0b9fc66", "id": "CVE-2020-11996", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11996 affects version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:9d16b653-3fb8-5fb8-9551-ce7f5793b9fc", "id": "CVE-2020-13934", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13934 affects version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:77270ff0-398a-51c8-bdab-39ae5171f6df", "id": "CVE-2020-13943", "analysis": { "state": "not_affected", "detail": "Vulnerability CVE-2020-13943 does not affect version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-ko. Fix for CVE-202-13943 for this version has been already backported by the original developers, so brunch 9.0.90 is not vulnerable" }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:b11fffc3-5aa5-5578-a95c-5d20d54a5915", "id": "CVE-2020-9484", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-9484 affects version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:93462e32-e9d1-5eee-813c-a9532a0c893b", "id": "CVE-2021-24122", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-24122 affects version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:9bb83d3e-1271-5a30-a90b-bd011f032574", "id": "CVE-2021-42340", "analysis": { "state": "not_affected", "detail": "Vulnerability CVE-2021-42340 does not affect version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-ko. Patches already applied: 31d62426645824bdfe076a0c0eafa904d90b4fb9 (already in target via 80f1438ec4 'Close WebConnection', a37a6d312c 'Fix BZ 68884 - improve handling of large scale WebSocket disconnects')" }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:0b2c8315-0ec6-503e-bf53-7465551fa230", "id": "CVE-2022-34305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-34305 affects version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:1696dc70-e55c-54d1-86d6-f1be4d16ae0d", "id": "CVE-2022-45143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-45143 affects version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:22ca8533-8a9c-5f5a-9ac6-73e80a21728a", "id": "CVE-2024-23672", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23672 affects version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:c1c0d556-7122-53ae-a17e-e1e99e1702f6", "id": "CVE-2024-24549", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-24549 affects version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:1663476f-822b-52b2-9bcb-a81ffb250a90", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:5e1edf2b-e9b3-5e85-a715-2a955c4c9ba0", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:138e9b9f-1661-5d0f-bba1-425f51f0cbfc", "id": "CVE-2024-54677", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-54677 affects version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:8b96f935-c89e-51e0-bcf9-3e02ffafc355", "id": "CVE-2024-56337", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-56337 is fixed in version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:32a1d3af-f5ed-5d61-8276-57e905c24922", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:5987a17e-08e5-58ef-b295-865abffdb121", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:3822fbd1-0aef-587a-9478-4cd02fba4c7d", "id": "CVE-2025-31651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-31651 affects version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:8cea36bc-bbc9-5b14-b34c-687dacf1d01e", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:037d58c8-8e00-590b-8643-744511def5d5", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:142431cd-c7f7-513d-ac5e-7246c987be30", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:d78d1e11-cba8-5e60-a679-1eb8681c9eb2", "id": "CVE-2025-49124", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49124 is fixed in version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:014fd36d-bede-58c1-95aa-6263b6992f2a", "id": "CVE-2025-49125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49125 is fixed in version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:d7eb320d-9adf-5c26-ac64-25d8d27b039d", "id": "CVE-2025-52434", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52434 is fixed in version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:70f3a3f6-085e-5685-aecf-03497e285386", "id": "CVE-2025-52520", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52520 is fixed in version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:c1ee8991-03ba-5ea4-ab0e-467156f1b72c", "id": "CVE-2025-53506", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-53506 is fixed in version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:7274eb40-7485-597e-8aef-73675f26e1d6", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:e087b0f9-77d4-562f-9b1c-7fb48fc1c048", "id": "CVE-2025-55752", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55752 affects version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:db393bb8-d76a-541e-8361-70fc35d301fc", "id": "CVE-2025-55754", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55754 is fixed in version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:12910fbf-2f82-5ffc-82c1-a8a31de1aaac", "id": "CVE-2025-61795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61795 is fixed in version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:3e44cd09-74b7-5cef-8283-2069303f1532", "id": "CVE-2025-66614", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66614 is fixed in version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:ed0d04d2-5b39-5ec5-8d29-dc68c8e4da8b", "id": "CVE-2026-24733", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-24733 is fixed in version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:6b8210c5-5435-5066-b540-0c0cd59a9c60", "id": "CVE-2026-24734", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24734 affects version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:55c988d8-14f1-5e1d-ac48-f828ecb46c69", "id": "CVE-2026-24880", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-24880 is fixed in version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:79405756-8860-5042-a471-3e760d1d5aa6", "id": "CVE-2026-25854", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-25854 is fixed in version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:370a9fd3-c2af-599a-806c-8351d2ed19c0", "id": "CVE-2026-29145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29145 affects version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:d028ca16-d452-5ec6-8a7b-c07d4c978811", "id": "CVE-2026-29146", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-29146 is fixed in version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:85c2cc3f-5431-5307-b340-3f501552d897", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:50f12c13-875f-57b7-914d-f92c6a3e7c0b", "id": "CVE-2026-34483", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-34483 is fixed in version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:d30d8c38-4508-5e0b-9d5f-02d3b40521c4", "id": "CVE-2026-34486", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34486 affects version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:f946e04d-cd47-5c17-b130-a5865bca7035", "id": "CVE-2026-34487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-34487 is fixed in version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:d7696f72-a93c-5466-a41d-f23dae28402c", "id": "CVE-2026-41284", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41284 affects version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:5b8d955d-c65e-5247-b3f7-265d4c2e308c", "id": "CVE-2026-41293", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41293 affects version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:e70afdc4-7660-56d4-b461-644889da01b2", "id": "CVE-2026-42498", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42498 affects version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:6b281301-8549-568f-bfd7-8164f683ee4c", "id": "CVE-2026-43512", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-43512 affects version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:6db42950-a967-5f89-9651-f5341e2e3157", "id": "CVE-2026-43513", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-43513 affects version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:53f2bc3f-bd88-541c-b0d9-902661fe9b88", "id": "CVE-2026-43514", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-43514 affects version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:afe99c97-065a-5bc1-9050-67251259b3ec", "id": "CVE-2026-43515", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-43515 affects version 9.0.90-tuxcare.8 of org.apache.tomcat:tomcat-i18n-ko." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.8" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-i18n-ko@9.0.90-tuxcare.8" } ] }