{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:2dd87cf1-073f-5643-aa7a-3823f63dc4da", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.9", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-websocket", "version": "8.5.100-tuxcare.9", "purl": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.9" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:e53a1480-ba08-5bb5-976a-b39b6492a1b8", "id": "CVE-2016-0762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0762 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:bcbeb5ea-388e-5938-9e0d-e51af1a7ae83", "id": "CVE-2016-0763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0763 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:d553dc85-520b-5acf-b385-930f7577009e", "id": "CVE-2016-5018", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5018 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:7728c02d-7249-5887-8eb5-834e9094c612", "id": "CVE-2016-6794", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6794 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:c2e255a1-2dcd-55d6-bffa-4a08f5902f3f", "id": "CVE-2016-6796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6796 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:c62d1a66-2194-51ea-ad2e-b7a47c64bef6", "id": "CVE-2016-6797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6797 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:84f1509c-91f1-5c9d-97c9-00000d9b4ade", "id": "CVE-2016-6816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6816 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:4f6b78ee-e69b-5f81-9552-bd5872777070", "id": "CVE-2016-6817", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6817 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:3f180c9d-648d-53fb-9899-d808bc78a4e8", "id": "CVE-2016-8745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8745 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:71ad7f62-41dd-5287-a783-54e72215f6d1", "id": "CVE-2016-8747", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8747 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:dbc310e4-31d0-5a01-b141-19219a9d215e", "id": "CVE-2017-12617", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-12617 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:d56ce1a3-7003-5127-bc25-ddda1019f5f0", "id": "CVE-2017-5647", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5647 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:470e9c21-375e-58c7-b363-c7ad2145bc96", "id": "CVE-2017-5648", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5648 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:1d112fe8-55d5-5737-8c01-dec28506e398", "id": "CVE-2017-5650", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5650 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:48956a9d-549e-5db7-8634-84f2df12457b", "id": "CVE-2017-5651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5651 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:76a8a139-7f2a-5d39-901e-17b12f7cc8e4", "id": "CVE-2017-5664", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5664 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:46839288-bfd0-5913-b773-dba05d1199c2", "id": "CVE-2017-7674", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7674 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:8c181cf0-d69a-5332-a109-a98d6749e86e", "id": "CVE-2017-7675", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7675 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:c3544f1a-c4c7-5e30-95ac-d6d3536bb3b1", "id": "CVE-2018-1304", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1304 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:6ca46d02-50a3-5bfd-b823-2cb1631e4d74", "id": "CVE-2018-1305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1305 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:5341915b-7e58-509f-8cbb-d31fbdd77abc", "id": "CVE-2018-1336", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1336 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:88c67f6e-3745-5ceb-93fd-24ae717d6a18", "id": "CVE-2018-8014", "analysis": { "state": "not_affected", "detail": "Vulnerability CVE-2018-8014 does not affect version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-websocket. Tomcat Version 8.5.100 is not vulnerable to CVE-2018-8014. Confirmed by manual code inspection and security advisories." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:42c2ab8f-a9da-51b2-83dc-52e567807800", "id": "CVE-2018-8034", "analysis": { "state": "not_affected", "detail": "Vulnerability CVE-2018-8034 does not affect version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-websocket. Tomcat Version 8.5.100 is not vulnerable to CVE-2018-8034. Confirmed by manual code inspection and security advisories." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:aafd2945-7535-5be8-9786-e266360049a5", "id": "CVE-2020-11996", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11996 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:754747eb-709e-5840-ac7f-f602d9631cfa", "id": "CVE-2020-13934", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13934 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:151c98f7-f1c8-5d9e-b9f2-f27b77a448eb", "id": "CVE-2020-13943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13943 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:5081486c-7109-5f3f-a909-37c9ced21735", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.tomcat:tomcat-websocket 8.5.100-tuxcare.9." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:26c3361b-45e0-597b-a3ed-6d46c0b00439", "id": "CVE-2020-9484", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-9484 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:b393981e-1773-5d13-9a38-ce1069438315", "id": "CVE-2021-24122", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-24122 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:69fcda4d-9ff4-5957-82f5-4e195818e49e", "id": "CVE-2021-42340", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-42340 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:9d56d786-66ae-5eef-8580-624a03a7a4bb", "id": "CVE-2022-34305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-34305 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:c2d42307-18d9-5c57-a630-8160cf8d756e", "id": "CVE-2022-45143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-45143 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:5c7d20b2-eb80-5277-aa37-1fafda3c17bd", "id": "CVE-2024-23672", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23672 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:3e79acfc-0ab7-50fc-8366-4680eea859c6", "id": "CVE-2024-24549", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-24549 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:4864d64a-3706-5a6c-9255-e1549aa970ae", "id": "CVE-2024-34750", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-34750 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:da786d0e-8467-5654-a3c7-2626edb6fb58", "id": "CVE-2024-38286", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38286 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:fd0045ad-b92b-54e7-b351-327018154ee7", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:bad5a40a-f2c1-562d-bb2c-952c191356cf", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:db62e728-24cb-532c-98ae-3a6b29c38eb9", "id": "CVE-2024-52317", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52317 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:92f29bd8-4435-5dfd-a862-bc05abc16172", "id": "CVE-2024-54677", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-54677 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:36e3cadb-5423-5746-bbf4-733e08c609ee", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:03959922-4ede-5c89-b7fa-55e43c986c06", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:970e1470-7c19-59eb-8d93-7b4c87ebe33d", "id": "CVE-2025-31651", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31651 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:638d6272-8339-5fb2-a4bc-5c1f377514a2", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:725a244f-c5f8-5c8f-9e22-db2940b8442e", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:bc80dee0-62f7-5037-b3ca-181f6dd61fbf", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:38a517c2-c555-581a-8a8d-4c2003b1af73", "id": "CVE-2025-49125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49125 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:b5f7459d-a957-5671-a466-c5916de935d3", "id": "CVE-2025-52434", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52434 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:7d13b2e5-6d9f-5f0c-a106-96b55f0b6966", "id": "CVE-2025-52520", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52520 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:8605929b-7488-51c5-90dc-90be19facb5e", "id": "CVE-2025-53506", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-53506 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:00ddfb74-26af-57a5-9b29-a82fb53f9463", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:9b8b3fb1-cc01-5c64-88d5-89834a5354f4", "id": "CVE-2025-55752", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55752 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:411a3fee-c38a-52d8-9e3b-f967608b06f3", "id": "CVE-2025-55754", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55754 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:7246f243-15e7-56c0-88e8-3bc12f683efd", "id": "CVE-2025-61795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61795 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:b897d05b-8bdc-5c8b-9a11-b3f0674dda36", "id": "CVE-2025-66614", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66614 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:2a1eb0bd-6ef1-5621-8fbf-3a3436a5a3fa", "id": "CVE-2026-24733", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-24733 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:b9abc1b6-6245-5526-9670-38e646a490c9", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:4b4e9c1c-5c52-5d63-b8ba-e5434d4bdde2", "id": "CVE-2026-25854", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-25854 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:9070752d-ef0c-587a-9e73-502d52cc504e", "id": "CVE-2026-29146", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-29146 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:ecf1f82c-1163-52b2-a1b9-f4ee23bac928", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:637ddade-d7b8-5122-b011-58a22040dbf4", "id": "CVE-2026-34486", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34486 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.9" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.9" } ] }