{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:138f5a4e-c057-5c14-9187-c84a73ba630c", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.10", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-websocket-api", "version": "8.5.100-tuxcare.10", "purl": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.10" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:f5b45e8d-8ff2-56ca-971b-3f5858631cce", "id": "CVE-2016-0762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0762 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:5336fe9e-d13e-5f16-a38a-f3c9df48fb04", "id": "CVE-2016-0763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0763 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:a1914fe2-edca-5714-8130-a909e7449619", "id": "CVE-2016-5018", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5018 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:9acbe672-26cf-5fbb-88dc-9a1bccaa94f7", "id": "CVE-2016-6794", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6794 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:41e780cd-a84f-5e24-be9a-7144c26ae7be", "id": "CVE-2016-6796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6796 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:a2276bb4-5941-50e6-b44d-12290467aa52", "id": "CVE-2016-6797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6797 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:4ef8f3f4-d1c4-51d7-afd7-775adafdcc70", "id": "CVE-2016-6816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6816 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:4e939389-7996-5625-b08f-e87f7b35318e", "id": "CVE-2016-6817", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6817 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:18e76b91-408b-5e6d-89e1-cc741b3dfc38", "id": "CVE-2016-8745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8745 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:7393bce1-efb1-54c9-87f9-bf26bdc9c50e", "id": "CVE-2016-8747", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8747 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:dacdde5f-2db2-5037-b2b3-9d87249cff36", "id": "CVE-2017-12617", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-12617 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:7ecc838a-cbc8-5c12-b756-7f90c8ea5398", "id": "CVE-2017-5647", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5647 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:e6d8d4a7-9885-53ad-876b-83f3d659cebe", "id": "CVE-2017-5648", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5648 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:5eda80c8-3359-5862-ab9b-7f937f21febf", "id": "CVE-2017-5650", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5650 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:74556fa1-becd-5191-ba2e-970fb1c2c369", "id": "CVE-2017-5651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5651 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:c24c9de7-7a34-57fd-bdd1-3de32b739aa9", "id": "CVE-2017-5664", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5664 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:a5acc726-61d2-5eb0-a282-e3b8a49b0228", "id": "CVE-2017-7674", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7674 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:f21d162d-6f16-54c9-a3e3-19922316c1ad", "id": "CVE-2017-7675", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7675 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:2b2d83d0-e5bd-51b8-afd6-00d415b1b319", "id": "CVE-2018-1304", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1304 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:55f30153-d5b4-5ac7-9098-afae2513b97f", "id": "CVE-2018-1305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1305 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:3dc9923d-a633-5e0e-9a02-5394494e7072", "id": "CVE-2018-1336", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1336 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:e9dece23-20ac-5819-ac4d-4bd8e4db57aa", "id": "CVE-2018-8014", "analysis": { "state": "not_affected", "detail": "Vulnerability CVE-2018-8014 does not affect version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-websocket-api. Tomcat Version 8.5.100 is not vulnerable to CVE-2018-8014. Confirmed by manual code inspection and security advisories." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:e8c49d90-c18b-581f-a0f4-bf771eb9fa35", "id": "CVE-2018-8034", "analysis": { "state": "not_affected", "detail": "Vulnerability CVE-2018-8034 does not affect version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-websocket-api. Tomcat Version 8.5.100 is not vulnerable to CVE-2018-8034. Confirmed by manual code inspection and security advisories." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:ad06ebf1-7f45-5d70-b5d2-6688593bef52", "id": "CVE-2020-11996", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11996 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:dcaa302a-deda-51d3-a61e-7feb4e650d43", "id": "CVE-2020-13934", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13934 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:8c37ecee-ef94-5fc4-acdf-ed420b3cf2c9", "id": "CVE-2020-13943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13943 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:c8f0a442-23cf-5af4-b8e8-e6f986c5a2f1", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.tomcat:tomcat-websocket-api 8.5.100-tuxcare.10." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:68c4e3b9-486a-515b-83fb-6792294d482e", "id": "CVE-2020-9484", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-9484 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:7261d4e2-3734-5b6f-a683-27acbc08b835", "id": "CVE-2021-24122", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-24122 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:3932cf79-75df-55d8-8193-7bd294765975", "id": "CVE-2021-42340", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-42340 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:9264010a-b786-50be-a682-39aa25d0d4bc", "id": "CVE-2022-34305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-34305 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:6de85d29-ee1e-5b1c-b2b8-705e871428dd", "id": "CVE-2022-45143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-45143 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:e581160e-dc58-5dc6-b855-0e4c8d1ed963", "id": "CVE-2024-23672", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23672 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:e3a80551-ab03-522a-aa5f-fc42db16067a", "id": "CVE-2024-24549", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-24549 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:240673bf-3fe0-53d7-ad79-723f12e47454", "id": "CVE-2024-34750", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-34750 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:f590e9d4-59cd-58b2-b9e7-7495e0d49289", "id": "CVE-2024-38286", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38286 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:d5611eb9-e1a9-5bc6-b4da-e99ebc25ccf3", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:033d75f0-940c-5e55-bfe7-073675bec315", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:00e31805-92c7-514f-a28d-db5f8748bc2c", "id": "CVE-2024-52317", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52317 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:23e82a82-eb26-58a5-9726-a831abe09c6a", "id": "CVE-2024-54677", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-54677 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:e8b160ce-f3ea-57f7-ac16-c04665ba1a9e", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:89adc563-175c-5cae-83dc-9d2789d8855b", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:989ea680-6eca-5779-a2e9-6cd99cd2338b", "id": "CVE-2025-31651", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31651 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:78524a0a-6dce-5e22-aa71-2cff9968f338", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:cdc076a4-7c16-5b35-a4ef-8a7e13a03c8b", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:87745f42-3d2c-51ce-b2e3-3b9c087bfa33", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:268ef748-7062-55ae-80b5-140405f6b28d", "id": "CVE-2025-49125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49125 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:1b22f989-4138-5bf6-a3cc-b42a84090965", "id": "CVE-2025-52434", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52434 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:dc68ed8d-053b-50ae-934a-56fe33703ea0", "id": "CVE-2025-52520", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52520 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:6b5b4bcd-4d6f-5824-ab29-717386177132", "id": "CVE-2025-53506", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-53506 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:e9be905a-999c-5fa7-a483-c8f8d19ca9a6", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:4bdc2b8e-bebc-5f78-be6e-b9fae89ae6ef", "id": "CVE-2025-55752", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55752 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:559a5d8d-b2b2-5515-bc39-2c338101f7f9", "id": "CVE-2025-55754", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55754 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:f371fb63-f937-54b6-8e87-41c89eead641", "id": "CVE-2025-61795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61795 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:6947a8b8-6dea-5ccb-b820-60b1a5baa897", "id": "CVE-2025-66614", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66614 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:3d2b137a-24e2-510b-b652-1fd5e8f7e7e9", "id": "CVE-2026-24733", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-24733 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:dcbf01eb-f477-5786-b62f-216d3336964c", "id": "CVE-2026-24880", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-24880 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:2e0b1ce2-a432-555c-b123-b0ade07831fb", "id": "CVE-2026-25854", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-25854 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:53a0a383-3b14-5693-815e-f80176b7105e", "id": "CVE-2026-29146", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-29146 is fixed in version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:dae3b0cc-299d-5c39-b23b-8c0e0fcfed21", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.10" } ] }, { "bom-ref": "urn:uuid:cf73ccfc-b6d3-52ce-94b6-325f755e5f8e", "id": "CVE-2026-34486", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34486 affects version 8.5.100-tuxcare.10 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.10" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.10" } ] }