{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:4cc04b12-3614-5b74-9c0e-6fbaccc890ca", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.9", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-jasper-el", "version": "8.5.100-tuxcare.9", "purl": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.9" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:bafae27d-f85e-5e6b-987c-b8c5a72e1ed6", "id": "CVE-2016-0762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0762 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:da689d9d-6d29-58ee-a5e2-d63a118e722f", "id": "CVE-2016-0763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0763 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:6f12a325-9768-5a9f-a3a9-70a0a5f13967", "id": "CVE-2016-5018", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5018 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:adf0ab78-f1c7-57d0-ad74-0fdcc2664330", "id": "CVE-2016-6794", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6794 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:554ba314-4e30-5193-8739-0caf5cb88da0", "id": "CVE-2016-6796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6796 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:8c20b60f-f1f3-5d3c-a052-f039544de7af", "id": "CVE-2016-6797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6797 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:8c000de1-bab7-5d36-9a72-3b50aac58e98", "id": "CVE-2016-6816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6816 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:7fb56ed3-e15a-56f3-b328-827520779901", "id": "CVE-2016-6817", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6817 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:13380f53-cfd4-5590-b6d3-f3c3105fb3c0", "id": "CVE-2016-8745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8745 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:a12e4a5d-7e7f-551e-a718-879912a878b8", "id": "CVE-2016-8747", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8747 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:e54a1b8b-a60e-573a-b467-859947af9c52", "id": "CVE-2017-12617", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-12617 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:55530ac5-2425-585a-9d1f-399ef79a3346", "id": "CVE-2017-5647", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5647 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:8eaad513-2e79-54bd-a790-21b27e29141e", "id": "CVE-2017-5648", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5648 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:f8b8007b-ae0b-5fff-a90f-8e8bf8766f1a", "id": "CVE-2017-5650", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5650 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:93e1389f-9b9e-51fb-a334-4830d0bfa36e", "id": "CVE-2017-5651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5651 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:4b9ab160-7248-593a-9f09-24ded124950e", "id": "CVE-2017-5664", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5664 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:a10b2b97-4f52-523b-b49c-2ff15dcdf807", "id": "CVE-2017-7674", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7674 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:3035ab36-8727-5504-800a-4a28d542ab2d", "id": "CVE-2017-7675", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7675 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:8b703152-6834-5641-b383-cdb87c72525d", "id": "CVE-2018-1304", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1304 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:988e9c74-b6ac-5c8c-b817-f7165566e7de", "id": "CVE-2018-1305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1305 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:66d531b1-ab15-5f61-9530-b3d42e8d479b", "id": "CVE-2018-1336", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1336 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:5a467cb3-ca97-5938-8921-5ec9409a5b9e", "id": "CVE-2018-8014", "analysis": { "state": "not_affected", "detail": "Vulnerability CVE-2018-8014 does not affect version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-jasper-el. Tomcat Version 8.5.100 is not vulnerable to CVE-2018-8014. Confirmed by manual code inspection and security advisories." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:b8208ef6-872f-59b8-b4f0-718c3b48f19e", "id": "CVE-2018-8034", "analysis": { "state": "not_affected", "detail": "Vulnerability CVE-2018-8034 does not affect version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-jasper-el. Tomcat Version 8.5.100 is not vulnerable to CVE-2018-8034. Confirmed by manual code inspection and security advisories." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:e9d6e856-0988-524c-937c-4d47c39711de", "id": "CVE-2020-11996", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11996 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:18ed370d-5493-52d8-9057-619f6727fdb8", "id": "CVE-2020-13934", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13934 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:2f9d259f-c659-5ba0-90a0-aaead878079b", "id": "CVE-2020-13943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13943 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:fbba1097-a9cc-5f4c-acf6-8f332b634b1d", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.tomcat:tomcat-jasper-el 8.5.100-tuxcare.9." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:280fe4e7-69ea-5236-8cb3-b6c4451689a4", "id": "CVE-2020-9484", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-9484 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:d7e6421f-8730-5c22-b325-8159264f0c04", "id": "CVE-2021-24122", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-24122 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:ba824ba8-5cb1-5bf8-a396-8c536f3c776b", "id": "CVE-2021-42340", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-42340 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:ed3bd2b0-7fc3-54f9-bdc8-6325667fd045", "id": "CVE-2022-34305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-34305 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:e50d4267-4326-5653-bc76-2ea837243d9f", "id": "CVE-2022-45143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-45143 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:8ba5cfa2-1ebf-57cc-9a77-b66dae01682a", "id": "CVE-2024-23672", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23672 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:17d36148-4c74-571a-9071-71c60550a4b2", "id": "CVE-2024-24549", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-24549 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:f5f0b423-a2c2-5b59-8b98-a9055b17f283", "id": "CVE-2024-34750", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-34750 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:2c263312-1ae2-581c-b890-09bbb433e09b", "id": "CVE-2024-38286", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38286 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:d1ca99f4-fd4a-56db-8272-721a45e352be", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:7c181ef8-fb56-5fb7-ae40-781bb64173ce", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:2c303a68-8c7a-595f-867f-d0cf6c9de723", "id": "CVE-2024-52317", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52317 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:f0bb074d-633a-5a33-947a-e9d1e71b19a6", "id": "CVE-2024-54677", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-54677 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:5d82f226-f109-5d01-bf30-6f830b0da3b3", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:fba23a63-6373-50b7-90a4-494dde38420d", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:4f2053d6-2ff2-5e93-88c1-aa730517f3e3", "id": "CVE-2025-31651", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31651 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:1cfffd22-086e-5485-a220-b2de810d4849", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:10bf9efa-c838-51db-a616-e54c7d1987d3", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:0c09e6f8-ca0b-5160-84b5-1b9af4fa614b", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:3815bc2f-9f5d-514f-849c-b2a4bfa984d3", "id": "CVE-2025-49125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49125 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:2111a5c5-07b9-5c19-bbe2-8c35db773947", "id": "CVE-2025-52434", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52434 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:5669c372-2073-5a59-b5f6-b5e9b2f17b47", "id": "CVE-2025-52520", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52520 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:fc6f2590-3914-5774-9baa-f927196e05de", "id": "CVE-2025-53506", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-53506 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:e07630fa-da05-5d67-98f9-25d09be1d215", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:15a77487-d4bd-5c8d-9bc1-ef3f30d73468", "id": "CVE-2025-55752", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55752 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:70459b66-f4b9-5865-a1d5-bc5fe8fd4326", "id": "CVE-2025-55754", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55754 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:54ab9256-d148-5479-a1ba-5f27b9cd1333", "id": "CVE-2025-61795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61795 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:d4984c80-3a03-5900-a7a1-074b2f7d55fd", "id": "CVE-2025-66614", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66614 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:f648fa8a-b483-5aec-8d4f-276add865b18", "id": "CVE-2026-24733", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-24733 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:5efea2f1-b35a-53f4-bf74-6335d3e8e051", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:cbd8f717-5b42-5e5b-9bfc-22108652881a", "id": "CVE-2026-25854", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-25854 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:5e369b12-6647-55e2-a4ce-8ea0b3919241", "id": "CVE-2026-29146", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-29146 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:befad374-42a2-523c-8bcf-9cd20e26e717", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:44179f47-5b57-5c48-91f2-9c6d9a8dbbfd", "id": "CVE-2026-34486", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34486 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.9" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.9" } ] }