{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:e9819d6f-1fe9-575e-a93d-28cbbd4d727b", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.9", "type": "library", "group": "org.apache.tomcat", "name": "tomcat", "version": "8.5.100-tuxcare.9", "purl": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.9" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:57d51432-335a-5083-ba22-5f8e9a160bb0", "id": "CVE-2016-0762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0762 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:dac88174-988d-5d1f-8c09-ced0633c52ba", "id": "CVE-2016-0763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0763 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:32511807-826e-5e56-843c-eb76b866caaa", "id": "CVE-2016-5018", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5018 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:aa2a8731-15a5-59d9-b5ee-96bc08366493", "id": "CVE-2016-6794", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6794 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:eeb73200-049b-52be-8197-10b594330dba", "id": "CVE-2016-6796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6796 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:c389bf23-9436-5f6f-bed9-3e53f310dc30", "id": "CVE-2016-6797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6797 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:0d587217-2f5c-5b37-8e2a-8f12824ae90d", "id": "CVE-2016-6816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6816 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:633d0387-c192-5fa8-80ef-ab4f32d26fa2", "id": "CVE-2016-6817", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6817 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:c71c4389-1b71-5271-94f8-14e85e437911", "id": "CVE-2016-8745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8745 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:f99bc0d8-4ec2-5972-a8ea-2cb96e2fad57", "id": "CVE-2016-8747", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8747 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:7f96136a-2c71-5959-a55a-cef2ae3bd7e2", "id": "CVE-2017-12617", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-12617 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:1de7202a-bb43-5d57-a9b7-d35b272c50b5", "id": "CVE-2017-5647", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5647 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:165f8256-be01-5b32-9492-da894e4d22ef", "id": "CVE-2017-5648", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5648 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:326dc8ee-3e80-564d-86c3-2f4dd0de4788", "id": "CVE-2017-5650", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5650 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:9219092b-65ef-5817-a3bf-add33ee9940d", "id": "CVE-2017-5651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5651 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:bbb08ff9-6d9d-539a-b852-586c1cefa6a5", "id": "CVE-2017-5664", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5664 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:6aa8435f-a183-5c51-9e9a-7c0f8aaaa72d", "id": "CVE-2017-7674", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7674 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:5c901baf-cd24-5444-97d2-14fa8ead43b0", "id": "CVE-2017-7675", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7675 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:e19401dd-bc2c-5788-97fc-cca624586ed7", "id": "CVE-2018-1304", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1304 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:3e248473-a0f5-5ccf-b5d7-c68b8fd7e90c", "id": "CVE-2018-1305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1305 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:1117121e-e4a6-5dba-adcc-a285716908f9", "id": "CVE-2018-1336", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1336 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:f7be311d-d3c8-5138-b204-eaa5e95f780e", "id": "CVE-2018-8014", "analysis": { "state": "not_affected", "detail": "Vulnerability CVE-2018-8014 does not affect version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat. Tomcat Version 8.5.100 is not vulnerable to CVE-2018-8014. Confirmed by manual code inspection and security advisories." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:f63ed549-d44a-55ca-8bd9-fca4ba46b4a0", "id": "CVE-2018-8034", "analysis": { "state": "not_affected", "detail": "Vulnerability CVE-2018-8034 does not affect version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat. Tomcat Version 8.5.100 is not vulnerable to CVE-2018-8034. Confirmed by manual code inspection and security advisories." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:5eab124d-9c68-5c6f-b56b-2f161e47396c", "id": "CVE-2020-11996", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11996 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:f7ffdc7e-b71d-5c68-9a25-823bc649058f", "id": "CVE-2020-13934", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13934 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:1e71e743-4a47-5683-b8ba-2e755485d0bf", "id": "CVE-2020-13943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13943 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:f5cccf6e-4be8-5e9f-9ca8-a146d7826287", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.tomcat:tomcat 8.5.100-tuxcare.9." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:2cc29bd0-a331-511f-8697-212bcec8d9bf", "id": "CVE-2020-9484", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-9484 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:81a7cadf-b8fa-526b-be2c-deca96499786", "id": "CVE-2021-24122", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-24122 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:15ab2d8e-2421-5c0a-b222-37d2d874abeb", "id": "CVE-2021-42340", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-42340 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:33586250-9655-57a5-ae6c-2550036fd888", "id": "CVE-2022-34305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-34305 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:cac5cd3e-f0cd-5125-bd24-8decd6574e3b", "id": "CVE-2022-45143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-45143 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:9265b625-d1d9-51cd-ba5f-927f14501c70", "id": "CVE-2024-23672", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23672 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:a93e4143-2858-5440-ae24-751958d03ff6", "id": "CVE-2024-24549", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-24549 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:614865ab-8e39-5fb5-a353-3bf11c1f9b15", "id": "CVE-2024-34750", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-34750 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:ea3cad77-0b18-586b-b9af-dbbf0575a8ca", "id": "CVE-2024-38286", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38286 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:b3186b59-f07c-52d1-bdfe-f08fa905d0b3", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:44c7844e-3ccd-549c-92bb-bc621821754c", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:a7815030-41da-521c-9469-71440e6f686a", "id": "CVE-2024-52317", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52317 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:44854f4a-73ca-50e2-8e6f-40a7427b7829", "id": "CVE-2024-54677", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-54677 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:45ccd486-fcd7-5c69-94eb-720d92ee9685", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:1c39b5b2-276f-5fb6-97bb-b7b1c7b242bc", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:84be3899-13da-594e-b0c3-e997febcbc02", "id": "CVE-2025-31651", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31651 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:cf962e3d-2504-5d0d-a6d2-4a1baa014050", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:64fa4b93-d065-502c-a727-6d1f300fd3cf", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:2214000a-15cb-5453-a522-76f9f7c180c8", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:b3fbb864-9899-5fd2-8e5b-2d9670497508", "id": "CVE-2025-49125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49125 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:58cdc36c-4c67-5d40-a59e-f05cc6f0f7cf", "id": "CVE-2025-52434", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52434 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:175aca5b-2c79-5934-a5a8-2db0c1af30be", "id": "CVE-2025-52520", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52520 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:cf78151e-13bd-55cc-bea9-6d151185f0c2", "id": "CVE-2025-53506", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-53506 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:fa650aff-499a-5a41-b4c7-d121bff816c2", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:8aeb1c2a-c874-5c0c-b8e4-0209cc4d3f84", "id": "CVE-2025-55752", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55752 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:34b08e5c-2f42-5912-b77d-6cacb25f858e", "id": "CVE-2025-55754", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55754 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:77775440-9552-551a-b0b2-2238406c31c6", "id": "CVE-2025-61795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61795 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:5b74e5f3-b032-50a3-945f-7fd207f5f763", "id": "CVE-2025-66614", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66614 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:68a54de1-2b8e-5228-8ece-14cbef311eec", "id": "CVE-2026-24733", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-24733 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:37a27c1e-949a-5257-9868-f6e06c045f56", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:1586f427-e5c9-51e6-9f8d-43a6caa017c5", "id": "CVE-2026-25854", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-25854 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:611894c3-0708-529a-b324-ae53cc58ffcd", "id": "CVE-2026-29146", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-29146 is fixed in version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:b1ea315c-229d-5d2e-aa5b-2ab2a45221e2", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.9" } ] }, { "bom-ref": "urn:uuid:b5309f36-12b3-5abe-89dc-fae7d7676f45", "id": "CVE-2026-34486", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34486 affects version 8.5.100-tuxcare.9 of org.apache.tomcat:tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.9" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat@8.5.100-tuxcare.9" } ] }