{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:5eedc670-9bb1-5486-985f-8d0107ac363c", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.5", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-juli", "version": "10.1.18-tuxcare.5", "purl": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.5" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:8ad0df6c-4c13-5ed5-85cf-e6c190cc3899", "id": "CVE-2024-23672", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-23672 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:c0c99933-f224-53ca-be76-066d16ce4cd8", "id": "CVE-2024-24549", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-24549 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:e2229423-fdc8-5025-91cd-82cb4ed7b986", "id": "CVE-2024-34750", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-34750 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:3eb51bfb-ef32-5ffb-903f-0395f6eb4033", "id": "CVE-2024-38286", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38286 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:f59db0d6-69b2-56eb-9301-471647991fa1", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:79cb6e6c-658f-52d6-9205-85b2c6f360ff", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:30a2c4c4-87a9-58b8-a1ae-c74e0ea3d126", "id": "CVE-2024-54677", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-54677 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:1dea41be-7d65-5408-9ee9-dda5d960d179", "id": "CVE-2024-56337", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-56337 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:a974def1-7bb1-52db-94c7-835b60860c85", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:24c9bc83-89f4-53b7-8b01-089760ddbcb9", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:53025a81-4457-58e7-8a96-1a3252e73a71", "id": "CVE-2025-31651", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31651 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:b9dd7925-eb44-5170-a51a-569bd201088c", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:06ef7afd-f5df-5ace-bdb6-c62649d301ad", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:3732eaa4-a77c-5d0c-9806-c6e63da8e302", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:d1a94d53-725e-5c9e-8a2c-34d5be2ffba5", "id": "CVE-2025-49124", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49124 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:9baf7e07-8e0a-55d2-a0b8-fbbf46e835cf", "id": "CVE-2025-49125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49125 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:57c56f0b-9fd1-59e2-bcbb-147ae16013dd", "id": "CVE-2025-52520", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52520 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:eacfe519-e033-5c53-8ed7-2a93275799ce", "id": "CVE-2025-53506", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-53506 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:1d5c8bb6-cef1-54bb-9b95-13c2adcd8af1", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:d6f9b972-83b6-521e-848a-743f5ea4c9b3", "id": "CVE-2025-55752", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55752 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:098dd3bd-2712-5a72-8613-deaf2dcd9bd9", "id": "CVE-2025-55754", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55754 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:d84acc18-b1fb-5c29-b73b-7ff085fa5be0", "id": "CVE-2025-61795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61795 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:6264346c-d909-5f07-8f3a-ed2daadc9f4a", "id": "CVE-2025-66614", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66614 affects version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:09d9baaf-7971-53f9-9c20-24b7a747f278", "id": "CVE-2026-24733", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-24733 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:2976e888-6005-5859-96b1-b646d17dd2f1", "id": "CVE-2026-24734", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24734 affects version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:6e234d70-2f04-5c57-a609-71ff0b9a1932", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:1748600b-2423-523d-9326-f0d24edb99f3", "id": "CVE-2026-25854", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-25854 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:1804cd10-22c6-53e5-a054-8405a4ca496c", "id": "CVE-2026-29145", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-29145 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:553ca719-023f-5d34-b2e6-86b464536fc2", "id": "CVE-2026-29146", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-29146 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:a6a47573-9d21-55ec-8831-92f3d6f1af7f", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:cfce409e-71d0-5fda-bd5e-8094ec070690", "id": "CVE-2026-34483", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-34483 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:23f484ab-0f2a-55b4-a90f-82ab40b79a77", "id": "CVE-2026-34486", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34486 affects version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:65d7c7af-02c1-5770-bd18-3dc186dabc0d", "id": "CVE-2026-34487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-34487 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-juli." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.5" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-juli@10.1.18-tuxcare.5" } ] }