{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:30d9a46b-07a3-5349-a64c-e4b629007de4", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-jdbc@10.1.18-tuxcare.5", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-jdbc", "version": "10.1.18-tuxcare.5", "purl": "pkg:maven/org.apache.tomcat/tomcat-jdbc@10.1.18-tuxcare.5" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:29ebb88a-0865-5eb0-bd84-33c482dd3146", "id": "CVE-2024-23672", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-23672 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-jdbc." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jdbc@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:46554715-22f6-5c48-9b8a-d01ad81715ed", "id": "CVE-2024-24549", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-24549 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-jdbc." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jdbc@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:53f3b546-d513-531f-8809-be5079e85c3c", "id": "CVE-2024-34750", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-34750 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-jdbc." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jdbc@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:be7dd1bc-dfc7-55d4-9b01-ac27ef26e2a6", "id": "CVE-2024-38286", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38286 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-jdbc." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jdbc@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:16d12a5f-4102-5ae0-a5ef-99a06ef170b9", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-jdbc." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jdbc@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:61a1b435-3ca6-5859-b170-b599855fefe1", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-jdbc." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jdbc@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:08d26e89-0c2a-5074-acfb-b29cd2e7fe2d", "id": "CVE-2024-54677", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-54677 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-jdbc." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jdbc@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:800f323d-690d-5881-a474-6fb64df2195c", "id": "CVE-2024-56337", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-56337 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-jdbc." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jdbc@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:d54cdf74-6b14-5ddb-9940-39edb387f473", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-jdbc." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jdbc@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:068c6cde-415f-53f0-818a-02fbaedf75af", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-jdbc." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jdbc@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:bc63c0db-7ee9-5cde-8146-2f385fe9f43c", "id": "CVE-2025-31651", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31651 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-jdbc." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jdbc@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:e2e5a831-60c7-5ad2-b299-bfd6fe1d41c6", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-jdbc." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jdbc@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:7400e431-a829-5e85-baba-4b2c4acb61bd", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-jdbc." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jdbc@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:ae98ef92-af07-5c3d-aa0d-874ab63bf884", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-jdbc." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jdbc@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:5d75a4ac-2ccd-5320-95ec-10335dc17713", "id": "CVE-2025-49124", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49124 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-jdbc." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jdbc@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:c4256997-1e78-5e2c-b11f-70dad093b47a", "id": "CVE-2025-49125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49125 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-jdbc." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jdbc@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:e470f734-bdd7-5eb0-ab46-6da7d76f3e96", "id": "CVE-2025-52520", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52520 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-jdbc." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jdbc@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:3d6ebc6a-a3b2-5608-8582-1b77762e0891", "id": "CVE-2025-53506", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-53506 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-jdbc." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jdbc@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:52d8a242-fdef-5de4-af07-aa4895e1342b", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-jdbc." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jdbc@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:75c11134-f3af-51b5-83b3-bbb6f876ad3e", "id": "CVE-2025-55752", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55752 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-jdbc." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jdbc@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:f2230cc4-16c5-5159-80b3-17775be022d0", "id": "CVE-2025-55754", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55754 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-jdbc." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jdbc@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:f4678ccd-da6e-5d85-a11e-803b89a19c1d", "id": "CVE-2025-61795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61795 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-jdbc." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jdbc@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:319c706f-83bf-5059-858f-d5f0808ebd60", "id": "CVE-2025-66614", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66614 affects version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-jdbc." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jdbc@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:ce9c6d09-2db6-50cd-9baf-c4fe1d9f5788", "id": "CVE-2026-24733", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-24733 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-jdbc." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jdbc@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:e9c86034-b00e-53ac-8df2-f39f025a31a0", "id": "CVE-2026-24734", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24734 affects version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-jdbc." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jdbc@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:a7d4935e-82e1-55ed-8f8e-b04a4b801812", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-jdbc." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jdbc@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:7d77898d-bd83-516f-a376-fb3e01c9c2b6", "id": "CVE-2026-25854", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-25854 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-jdbc." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jdbc@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:7a70b281-1213-5c5b-bd0a-d359d533dd38", "id": "CVE-2026-29145", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-29145 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-jdbc." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jdbc@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:9c720da2-2c55-5a0f-907c-d07c693888c9", "id": "CVE-2026-29146", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-29146 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-jdbc." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jdbc@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:400af7b6-d9ef-5de1-bc5a-7543c530e306", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-jdbc." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jdbc@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:97fee05b-4976-5565-a011-aae58d8ffd66", "id": "CVE-2026-34483", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-34483 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-jdbc." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jdbc@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:42990558-3fe6-5315-898e-f348bd425f47", "id": "CVE-2026-34486", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34486 affects version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-jdbc." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jdbc@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:9f45af7a-3e52-5b20-9761-08ee9c99457a", "id": "CVE-2026-34487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-34487 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-jdbc." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jdbc@10.1.18-tuxcare.5" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jdbc@10.1.18-tuxcare.5" } ] }