{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:2b614a5a-9b7a-5b57-91b9-169c39929983", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-jasper@8.5.100-tuxcare.10", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-jasper", "version": "8.5.100-tuxcare.10", "purl": "pkg:maven/org.apache.tomcat/tomcat-jasper@8.5.100-tuxcare.10" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:28b79644-9c05-5ddb-8f38-e2b8da7886b0", "id": "CVE-2016-0762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0762 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:4551fd63-c94e-58a7-aab8-d2870e023627", "id": "CVE-2016-0763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0763 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:cd6f08d1-42eb-5412-8269-6795ce9f08ff", "id": "CVE-2016-5018", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5018 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:e03d4ee7-8c4b-5506-b599-40a8b600f842", "id": "CVE-2016-6794", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6794 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:13a4ac17-2304-5021-8264-be431fdccd95", "id": "CVE-2016-6796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6796 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:27533fb3-cca7-58cf-b522-1950d636e4f4", "id": "CVE-2016-6797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6797 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:97ece32f-c7f1-51f5-b65b-574c83763921", "id": "CVE-2016-6816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6816 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:a4f6fcba-1e3d-5b55-be2c-c25250d5398a", "id": "CVE-2016-6817", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6817 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:0306e211-f7b2-5dbe-ae6c-039c036599b6", "id": "CVE-2016-8745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8745 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:7600f3c0-5af9-51f1-9f20-15d9bffcbf52", "id": "CVE-2016-8747", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8747 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:2baad5b0-84fc-5d6f-8607-0a996ccc2a78", "id": "CVE-2017-12617", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-12617 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:53f1008f-fcb8-57dc-b1bb-6ad9f43f7566", "id": "CVE-2017-5647", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5647 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:e19da4ac-b51e-50e0-9e23-bde0e0310841", "id": "CVE-2017-5648", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5648 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:8816b4ae-0c63-5cae-a41c-963f798b6705", "id": "CVE-2017-5650", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5650 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:b33ad5d8-cfc4-5d03-b9fc-7f737ea1fcbd", "id": "CVE-2017-5651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5651 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:0a0af6f3-3aba-568a-b8ed-9c724b42c5c7", "id": "CVE-2017-5664", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5664 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:67c89db7-5f3f-565f-a27f-8786d55d3dd4", "id": "CVE-2017-7674", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7674 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:a0089057-bd56-5205-9be3-2e8509d615c5", "id": "CVE-2017-7675", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7675 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:f399d90f-4cd9-5981-8bd4-31b2e57dc2d2", "id": "CVE-2018-1304", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1304 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:f64c35c5-5390-5f74-b12f-035f6e9eda30", "id": "CVE-2018-1305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1305 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:7b02df2f-d5ac-53b0-aa31-e42487bb4b21", "id": "CVE-2018-1336", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1336 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:a6bee594-e540-5801-9cb7-d98f386a4a6b", "id": "CVE-2018-8014", "analysis": { "state": "not_affected", "detail": "Vulnerability CVE-2018-8014 does not affect version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-jasper. Tomcat Version 8.5.100 is not vulnerable to CVE-2018-8014. Confirmed by manual code inspection and security advisories." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:07282ed1-4427-5b89-b69e-6c686b62a66d", "id": "CVE-2018-8034", "analysis": { "state": "not_affected", "detail": "Vulnerability CVE-2018-8034 does not affect version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-jasper. Tomcat Version 8.5.100 is not vulnerable to CVE-2018-8034. Confirmed by manual code inspection and security advisories." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:e9aa2507-ac9b-5fc0-89d6-5142d7dca151", "id": "CVE-2020-11996", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11996 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:ba328153-2375-5ea6-81ef-8e77558c0428", "id": "CVE-2020-13934", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13934 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:30040957-4597-54db-b89a-eb85b3b8d65c", "id": "CVE-2020-13943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13943 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:c6799223-895d-5e36-9554-2ab091084418", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.tomcat:tomcat-jasper 8.5.100-tuxcare.10." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:bdf75359-4e2d-51ca-92ac-f81cd5152a6c", "id": "CVE-2020-9484", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-9484 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:b2ddcb0c-9f2c-5eac-9a0a-16cdc6778703", "id": "CVE-2021-24122", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-24122 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:36ac7608-ff33-558b-ab0e-a80052e5bf05", "id": "CVE-2021-42340", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-42340 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:80cfcaad-675d-5af7-9d47-485f63c4954c", "id": "CVE-2022-34305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-34305 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:e64ea838-017e-5cc3-8885-64b55c7ac3ee", "id": "CVE-2022-45143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-45143 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:1cf8de2c-47d5-51f5-8f8d-ebc29546a3c8", "id": "CVE-2024-23672", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23672 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:21514473-90c0-53b0-a491-fee931e5b063", "id": "CVE-2024-24549", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-24549 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:b2acb2c3-63ce-5b9a-8796-5f4fb9eeb4e4", "id": "CVE-2024-34750", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-34750 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:652b4d1d-1a74-5188-a7a7-4ad31859138c", "id": "CVE-2024-38286", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38286 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:7e331296-b413-5ccb-a2c8-bbff1056ac52", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:e9ccd9c1-718f-5218-86c5-ffda07767eaf", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:adec19b2-3b17-5f10-b857-4bf822b37a6c", "id": "CVE-2024-52317", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52317 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:8c6bfd7a-1eb8-5f00-8ccd-e2923cf2e52a", "id": "CVE-2024-54677", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-54677 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:8b8d32b3-abaa-5eee-843f-3894be1c1bb6", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:1efea10b-79a5-5c64-a4f7-b1bfdbfc13b2", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:63d1e4d1-8f03-55f6-aa04-a3b93f1468d6", "id": "CVE-2025-31651", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31651 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:bda7149d-2df6-5d10-ba36-43470c023594", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:db35d3fd-c4c1-5de2-9842-5763ddcfbfe9", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:3934fe14-6cd8-5bc6-a50e-66bc85f60136", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:70310e7b-f95a-58a0-b782-88bbc74b65f3", "id": "CVE-2025-49125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49125 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:1913e5df-e699-5f79-a159-64a24ac810fa", "id": "CVE-2025-52434", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52434 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:40e33446-ebc7-5ff7-b2b2-fd59acbbb485", "id": "CVE-2025-52520", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52520 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:26cc1a87-b72d-56c9-913e-fef2f3576b01", "id": "CVE-2025-53506", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-53506 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:000bd1c1-6745-584e-aeff-0a3fd0da9cce", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:a54bcb2b-6d43-5f4d-979a-8cc4464b7a11", "id": "CVE-2025-55752", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55752 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:788ccbf2-e9ee-5c5e-93ca-064311b45c03", "id": "CVE-2025-55754", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55754 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:b2c21494-2c14-5406-a86f-f38f81ec120f", "id": "CVE-2025-61795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61795 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:5a562718-2be7-5cd0-906f-a4dad0023971", "id": "CVE-2025-66614", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66614 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:57eb8e27-ee41-5b35-8ad3-26be714decfd", "id": "CVE-2026-24733", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-24733 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:34151028-a6a6-5133-b2ff-d876bd5f7b59", "id": "CVE-2026-24880", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-24880 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:daedb524-bf34-59db-abf7-01f28b86adf1", "id": "CVE-2026-25854", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-25854 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:b061513a-e3a5-5158-bc23-bb97590cb746", "id": "CVE-2026-29146", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-29146 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:e584ef45-b215-5673-8a11-f7d45c8a7603", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:98c2c6f7-ace0-5ffc-bef9-aba4c2b5b648", "id": "CVE-2026-34486", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34486 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-jasper." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper@8.5.100-tuxcare.10" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper@8.5.100-tuxcare.10" } ] }