{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:6a779b2c-bbea-54a9-a4ea-99b8e33ad8e6", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.5", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-tribes", "version": "10.1.18-tuxcare.5", "purl": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.5" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:a7ab2832-ad45-54c1-83dd-940e11efa4ee", "id": "CVE-2024-23672", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-23672 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:a5b3e3cb-1efd-508c-9400-796eb3fa3a17", "id": "CVE-2024-24549", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-24549 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:81060904-8ad1-5a73-bd37-1a169d1d1adb", "id": "CVE-2024-34750", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-34750 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:a42e474c-ad61-54bc-b24c-5b21f05c73ef", "id": "CVE-2024-38286", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38286 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:979a2937-c5cc-5e7a-ad55-59c66f096863", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:91c34901-5606-57bc-bec6-36ceb4586e91", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:9e418e00-7d98-509e-a97f-44f3b5d25983", "id": "CVE-2024-54677", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-54677 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:7460d0f9-21e1-584e-8fc9-3fbe35988a6b", "id": "CVE-2024-56337", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-56337 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:7711b8ff-6c97-5a4a-b994-d43eea2099e6", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:17090d5e-3f18-5585-9b37-5dc5015e9c21", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:a0671c7b-e0d3-580b-a956-b3614e85920c", "id": "CVE-2025-31651", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31651 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:d4377e73-d1f9-5828-b585-9495adcc9e1a", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:3c82aec2-9818-575d-b754-357697409de8", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:bc2a94db-9c40-5ae7-91c9-f6a5ea8a2cf7", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:af67f248-565b-59e1-a03c-dd501b9a9693", "id": "CVE-2025-49124", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49124 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:003cc797-5d67-536b-ac43-65c6653e6583", "id": "CVE-2025-49125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49125 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:0aea4136-0a06-5779-ba27-201c23804871", "id": "CVE-2025-52520", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52520 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:065d1857-aba6-57ef-bc39-c186763d809a", "id": "CVE-2025-53506", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-53506 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:5ffd41dd-33ad-53df-91b7-c7b19df12f59", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:b2855495-8709-5d36-956d-18b0f2850271", "id": "CVE-2025-55752", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55752 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:cc678700-5c71-5559-95ce-e11421500ea5", "id": "CVE-2025-55754", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55754 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:6957a043-1d3e-5520-8f59-4d0783d4883d", "id": "CVE-2025-61795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61795 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:00f6b4c6-afe3-5b17-adb1-f7eed6ad6dcb", "id": "CVE-2025-66614", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66614 affects version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:adab502c-4d86-59b4-8d27-201471e3a33b", "id": "CVE-2026-24733", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-24733 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:d6fbb7db-77a0-525b-a426-2187d6c93faa", "id": "CVE-2026-24734", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24734 affects version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:ad58679c-efa4-5b8b-af10-467e7a0f9977", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:98454e56-b2a9-54ac-891c-6a0b3b07d33a", "id": "CVE-2026-25854", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-25854 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:751a17ad-c414-5cc7-a741-ea204ff3e0be", "id": "CVE-2026-29145", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-29145 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:cd06ed2b-c158-5ead-87f5-79fca482f918", "id": "CVE-2026-29146", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-29146 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:56eb06dd-9c76-5d73-ba4d-987b59b46a48", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:07efda97-f26c-5b8d-b4fb-3cdb40afaaae", "id": "CVE-2026-34483", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-34483 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:3fdcfbfb-736f-5188-8ad8-5c27b4327b36", "id": "CVE-2026-34486", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34486 affects version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:68cfbb2c-26b3-5c7a-9808-fe35e8f1c793", "id": "CVE-2026-34487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-34487 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat:tomcat-tribes." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.5" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-tribes@10.1.18-tuxcare.5" } ] }