{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:bc5fd337-bab5-51f7-a3a7-ab40dd04c5cc", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-servlet-api@7.0.109-tuxcare.1", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-servlet-api", "version": "7.0.109-tuxcare.1", "purl": "pkg:maven/org.apache.tomcat/tomcat-servlet-api@7.0.109-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:4bf7106d-8af2-58a8-9fb1-7c76b6541d66", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-servlet-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-servlet-api@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d3331093-7569-5605-b551-6b36f1033808", "id": "CVE-2015-5174", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5174 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-servlet-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-servlet-api@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:31598396-b7d1-5c92-81bd-1b7f9af28f1a", "id": "CVE-2015-5346", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5346 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-servlet-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-servlet-api@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8c28606c-869b-5164-8ca8-b6b9c4c961b6", "id": "CVE-2016-0706", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0706 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-servlet-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-servlet-api@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d5aaa038-7458-5689-b76e-8bfc758ef153", "id": "CVE-2016-0762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0762 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-servlet-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-servlet-api@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4c2ecb9d-d8c1-5786-bbbb-67ce08824f42", "id": "CVE-2016-0763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0763 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-servlet-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-servlet-api@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e65e35f4-dce3-5c3c-ae22-0ef2a4ea8b98", "id": "CVE-2016-5018", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5018 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-servlet-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-servlet-api@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9d45f709-66ee-5bed-a990-55a59ca13b4a", "id": "CVE-2016-6794", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6794 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-servlet-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-servlet-api@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:21a72f6f-4aeb-5e83-afb8-2692495dc337", "id": "CVE-2016-6796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6796 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-servlet-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-servlet-api@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:804b45cf-1273-5daa-9374-b60dff48d70e", "id": "CVE-2016-6797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6797 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-servlet-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-servlet-api@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e940e477-1af0-5019-9b91-e831d735e5d9", "id": "CVE-2016-6816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6816 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-servlet-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-servlet-api@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:962581ba-6ded-5f52-ae20-fbec6aa7e1e6", "id": "CVE-2016-6817", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6817 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-servlet-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-servlet-api@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:efc02840-ec73-5807-b4df-df27c13cf2ed", "id": "CVE-2016-8745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8745 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-servlet-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-servlet-api@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:958e7b67-26f3-5b0e-baf5-1276e9cf50cf", "id": "CVE-2016-8747", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8747 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-servlet-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-servlet-api@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ff22776a-c294-54f6-a9f0-a3af7bb344af", "id": "CVE-2017-12617", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-12617 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-servlet-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-servlet-api@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e1cc950e-daac-5481-ad87-ed65e938b6a1", "id": "CVE-2017-5647", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5647 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-servlet-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-servlet-api@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:539d3a08-f01d-5d09-8cd8-2eb72e061287", "id": "CVE-2017-5648", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5648 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-servlet-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-servlet-api@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ba251a5e-91a9-5ca2-8c66-9e4e3dacd7eb", "id": "CVE-2017-5650", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5650 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-servlet-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-servlet-api@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1bba3464-e5b6-5be4-9c56-967f92bb370a", "id": "CVE-2017-5651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5651 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-servlet-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-servlet-api@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:41ce910b-1eb9-5247-b155-ec6dbd1d827b", "id": "CVE-2017-5664", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5664 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-servlet-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-servlet-api@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f8b98dfb-c9b0-52d4-b4ee-f00d2ebfa527", "id": "CVE-2017-7674", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7674 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-servlet-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-servlet-api@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e6ba439c-ff55-5f3c-864c-a2d3d631435b", "id": "CVE-2017-7675", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7675 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-servlet-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-servlet-api@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7b520f1f-5634-5113-9778-41953098a404", "id": "CVE-2018-1304", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1304 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-servlet-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-servlet-api@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9e412be5-59ee-56e2-a7c6-f23888c1e468", "id": "CVE-2018-1305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1305 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-servlet-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-servlet-api@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ffdfa005-11ae-5efb-bdcf-7253cb51c6c3", "id": "CVE-2018-1336", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1336 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-servlet-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-servlet-api@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c00924ba-37f7-52cd-a57a-e185068920c3", "id": "CVE-2018-8014", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8014 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-servlet-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-servlet-api@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1b9abc3e-9654-56b9-9c6c-effcf166f877", "id": "CVE-2018-8034", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8034 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-servlet-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-servlet-api@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:15a3746e-2f22-580e-adc0-395a778488cd", "id": "CVE-2019-12418", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-12418 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-servlet-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-servlet-api@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6177d2cb-f1ba-5d5d-a8b6-b94571a742b2", "id": "CVE-2020-11996", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11996 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-servlet-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-servlet-api@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:be4389f5-41a3-51ce-9ed6-80d05e4bdf2a", "id": "CVE-2020-13934", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13934 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-servlet-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-servlet-api@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:24832dab-0ac1-5c45-89b1-71b6859d58c6", "id": "CVE-2020-13943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13943 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-servlet-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-servlet-api@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:50ac62fd-a393-5e94-97dc-3c70cda65bfe", "id": "CVE-2020-9484", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-9484 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-servlet-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-servlet-api@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:854f72dd-22e7-5ad7-8672-772386b1ec6a", "id": "CVE-2021-24122", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-24122 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-servlet-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-servlet-api@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c7e7fd81-b264-5934-916f-e329f955c826", "id": "CVE-2021-30639", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-30639 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-servlet-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-servlet-api@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:25bb14b6-f3e2-5fc8-b6f6-c7f43e9a3136", "id": "CVE-2021-42340", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-42340 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-servlet-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-servlet-api@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:65d4be73-4da5-5bb5-9698-641bb8f819b4", "id": "CVE-2022-23181", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-23181 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-servlet-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-servlet-api@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4cf41ad1-d6d3-575d-b2f0-a0c3145f7e63", "id": "CVE-2022-34305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-34305 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-servlet-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-servlet-api@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b8354d6f-5a02-54e9-b10d-d133c3f431a7", "id": "CVE-2022-45143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-45143 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-servlet-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-servlet-api@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b31ffcea-67db-5634-853f-0c4cf78f52c4", "id": "CVE-2024-24549", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-24549 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-servlet-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-servlet-api@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:23ccb98f-013b-58a0-bebf-515d65c487a4", "id": "CVE-2024-38286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-38286 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-servlet-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-servlet-api@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3343403d-51e4-5fb1-958c-536fb76ac21e", "id": "CVE-2024-52316", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-52316 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-servlet-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-servlet-api@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:89f1a858-9dd0-563c-9041-bd86c112944a", "id": "CVE-2025-31650", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-31650 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-servlet-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-servlet-api@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9e9fa360-5b67-5f86-9792-56b921e306bc", "id": "CVE-2025-31651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-31651 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-servlet-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-servlet-api@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:43b5d4d4-2529-5554-8dc0-5daf287829b9", "id": "CVE-2025-48988", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-48988 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-servlet-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-servlet-api@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:84618099-7028-5dcd-b24e-70c6698f8ebb", "id": "CVE-2025-49125", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-49125 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-servlet-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-servlet-api@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:84e75f2b-92a3-54ac-86da-457795b31d14", "id": "CVE-2025-66614", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66614 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-servlet-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-servlet-api@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:57ef0bcf-838a-574f-9cd2-b961d16c3fd9", "id": "CVE-2026-24733", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24733 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-servlet-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-servlet-api@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d916a66d-8f3d-597e-815b-b2ffade7cd62", "id": "CVE-2026-24880", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-24880 is fixed in version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-servlet-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-servlet-api@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0d3eea2f-eb77-5d34-9ecb-ee74ea0b575a", "id": "CVE-2026-29145", "analysis": { "state": "not_affected", "detail": "Vulnerability CVE-2026-29145 does not affect version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-servlet-api. The official CVE record (https://www.cve.org/CVERecord?id=CVE-2026-29145) limits the affected versions to Apache Tomcat 9.0.13\u20139.0.115, 10.1.0-M7\u201310.1.52, and 11.0.0-M1\u201311.0.18. Version 7.0.109 is not within any of these ranges" }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-servlet-api@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9ba7a4a6-945e-51d0-b368-da6938c20b88", "id": "CVE-2026-29146", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29146 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-servlet-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-servlet-api@7.0.109-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6503a680-56c5-5407-87ee-3aea64056d56", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 7.0.109-tuxcare.1 of org.apache.tomcat:tomcat-servlet-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-servlet-api@7.0.109-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-servlet-api@7.0.109-tuxcare.1" } ] }