{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:7e5b3c43-8b27-58d4-9dea-e33c75085ab5", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.100-tuxcare.6", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-storeconfig", "version": "9.0.100-tuxcare.6", "purl": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.100-tuxcare.6" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:dfe10d12-7f46-542d-957c-2014270271a8", "id": "CVE-2020-11996", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11996 affects version 9.0.100-tuxcare.6 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:2e299dbc-e017-56d6-83ea-00812e7182cf", "id": "CVE-2020-13934", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13934 affects version 9.0.100-tuxcare.6 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:66d0f4eb-14d9-565f-a2c6-6d940b2d4bf9", "id": "CVE-2020-13943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13943 affects version 9.0.100-tuxcare.6 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:9f9db41d-9b57-5da0-958d-963509608e27", "id": "CVE-2020-9484", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-9484 affects version 9.0.100-tuxcare.6 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:f58a877e-af96-5b6a-860c-fab8a0d357d7", "id": "CVE-2021-24122", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-24122 affects version 9.0.100-tuxcare.6 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:a26f23d0-ba7f-5d09-9157-d0498af759bc", "id": "CVE-2021-42340", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-42340 affects version 9.0.100-tuxcare.6 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:ef2ba9f8-1c51-59cf-8197-a4c6c2d78f88", "id": "CVE-2022-34305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-34305 affects version 9.0.100-tuxcare.6 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:ac7eef67-1338-5767-88ad-fde787956b85", "id": "CVE-2022-45143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-45143 affects version 9.0.100-tuxcare.6 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:202df56b-e961-5c4b-a086-2f5c329a2349", "id": "CVE-2024-23672", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23672 affects version 9.0.100-tuxcare.6 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:080f5b54-e541-53ae-954c-5fc6c8b5b52d", "id": "CVE-2024-24549", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-24549 affects version 9.0.100-tuxcare.6 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:e52a093c-89ea-5373-9e75-e83df0d984d3", "id": "CVE-2024-52316", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-52316 affects version 9.0.100-tuxcare.6 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:72a9d1c4-c6a8-5015-b4d1-87cbb05ec3f0", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 9.0.100-tuxcare.6 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:f733c1ad-59c9-5614-bea4-0218ed15f78c", "id": "CVE-2025-31651", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31651 is fixed in version 9.0.100-tuxcare.6 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:d3ff9850-d45f-5d10-a533-2d9fce366785", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 9.0.100-tuxcare.6 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:f586e06d-e282-5ce2-b7da-8e22c7145029", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 9.0.100-tuxcare.6 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:10d61488-1e73-5412-8a90-dff92606e617", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 9.0.100-tuxcare.6 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:7a94b955-133d-5146-bb6c-48b43c8e5828", "id": "CVE-2025-49124", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49124 is fixed in version 9.0.100-tuxcare.6 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:454ad0c5-884b-5a85-b506-a3c97903eac4", "id": "CVE-2025-49125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49125 is fixed in version 9.0.100-tuxcare.6 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:dbde57a5-b92f-51d1-835e-7e37ce218d2c", "id": "CVE-2025-52434", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52434 is fixed in version 9.0.100-tuxcare.6 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:d23f558a-5f7a-5bec-a03d-5bd896e8abfc", "id": "CVE-2025-52520", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52520 is fixed in version 9.0.100-tuxcare.6 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:2253cca5-377f-510d-bc65-347245e5b296", "id": "CVE-2025-53506", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-53506 is fixed in version 9.0.100-tuxcare.6 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:2eaedaaa-d95c-5110-9455-28876238f7a9", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 9.0.100-tuxcare.6 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:000a9361-0328-5d09-8e25-decb53635549", "id": "CVE-2025-55752", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55752 is fixed in version 9.0.100-tuxcare.6 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:0638644d-db9d-5ac2-8c1e-ad499514902f", "id": "CVE-2025-55754", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55754 is fixed in version 9.0.100-tuxcare.6 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:b0334817-03d2-5247-9544-cfad8304e967", "id": "CVE-2025-61795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61795 is fixed in version 9.0.100-tuxcare.6 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:11d023f0-ab95-525b-a7e8-12823746615f", "id": "CVE-2025-66614", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66614 is fixed in version 9.0.100-tuxcare.6 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:fb3f8c13-92f5-5845-8ef8-0849d365c9c4", "id": "CVE-2026-24733", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-24733 is fixed in version 9.0.100-tuxcare.6 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:1c360493-008f-52f6-8706-09db99934917", "id": "CVE-2026-24734", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24734 affects version 9.0.100-tuxcare.6 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:fcf75fbb-d123-56df-953e-0d9494c8dee0", "id": "CVE-2026-24880", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-24880 is fixed in version 9.0.100-tuxcare.6 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:fefcecce-63bc-5cc9-bdd4-8eeeca2e3965", "id": "CVE-2026-25854", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-25854 is fixed in version 9.0.100-tuxcare.6 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:c697b816-6145-5af8-8b0f-3b69398be93c", "id": "CVE-2026-29145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29145 affects version 9.0.100-tuxcare.6 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:7298b345-d206-5e3f-b1dc-6af3a4952d2f", "id": "CVE-2026-29146", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-29146 is fixed in version 9.0.100-tuxcare.6 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:0f462ddc-e7df-5031-901a-a1fd23836cdc", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 9.0.100-tuxcare.6 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:32100af5-7f63-5f84-8b69-6944e6d46a1b", "id": "CVE-2026-34483", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-34483 is fixed in version 9.0.100-tuxcare.6 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:b3c8a837-9eee-5443-abf3-e86f9fb2342f", "id": "CVE-2026-34486", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34486 affects version 9.0.100-tuxcare.6 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:b7bfeef5-1f7c-5273-b176-2db0d128f14f", "id": "CVE-2026-34487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34487 affects version 9.0.100-tuxcare.6 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.100-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:c12eeb41-5fa6-5916-bf4c-3567ce14308f", "id": "CVE-2026-34500", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34500 affects version 9.0.100-tuxcare.6 of org.apache.tomcat:tomcat-storeconfig." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.100-tuxcare.6" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-storeconfig@9.0.100-tuxcare.6" } ] }