{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:a96629bb-ae38-550b-a048-8a3237f4af4b", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@7.6.0.v20120127-tuxcare.1", "type": "library", "group": "org.eclipse.jetty.aggregate", "name": "jetty-aggregate-project", "version": "7.6.0.v20120127-tuxcare.1", "purl": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@7.6.0.v20120127-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:cc4583d6-372a-579a-b5d3-b0622fce5fbc", "id": "CVE-2011-4461", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2011-4461 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-aggregate-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:69a0d06b-7b51-5bd7-af4e-2ad9db65359d", "id": "CVE-2015-2080", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-2080 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-aggregate-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:af4f5dce-c4d6-5dc3-a8cd-942b71f91315", "id": "CVE-2017-7656", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7656 is fixed in version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-aggregate-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0c4ec4ae-0f12-5d72-8138-78aa86ec29d4", "id": "CVE-2017-7657", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7657 is fixed in version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-aggregate-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a05f930a-ab68-5dbe-9bbd-e3bafec95ac8", "id": "CVE-2017-7658", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7658 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-aggregate-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a79f59f0-7f37-56ac-b7db-423b9c86f2b2", "id": "CVE-2017-9735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-9735 is fixed in version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-aggregate-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a84a796d-56c5-5211-a17a-9d0c05c905db", "id": "CVE-2018-12536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12536 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-aggregate-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:044911e3-5619-5c3f-9155-dd57a8409631", "id": "CVE-2018-12538", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12538 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-aggregate-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dc97ebb4-43ab-5a22-b6b3-6d7eccadff11", "id": "CVE-2018-12545", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12545 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-aggregate-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6d19ea8a-fdcb-55f2-867c-b21e64399b93", "id": "CVE-2019-10241", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10241 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-aggregate-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:872e3501-a516-56e1-85d9-a3deff58b471", "id": "CVE-2019-10246", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10246 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-aggregate-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:70889022-3595-565b-ad56-9dd21789dea9", "id": "CVE-2019-10247", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-10247 is fixed in version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-aggregate-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:96d73b19-2d1a-5259-b55b-68179ce33b31", "id": "CVE-2019-17638", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-17638 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-aggregate-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b560652e-1b6d-56e0-b37b-d4dd2a90f9cd", "id": "CVE-2020-27216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27216 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-aggregate-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:abd22fd5-d075-5b98-a33c-cabbe16572a8", "id": "CVE-2020-27218", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27218 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-aggregate-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:55d05d65-bbfb-516f-a267-55aec973f177", "id": "CVE-2021-28165", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-28165 is fixed in version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-aggregate-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bad2d105-6a03-5d33-a51f-558796278961", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-aggregate-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:87f0a845-9d5d-52c3-a070-fe157db18a51", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-aggregate-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:898dde8e-4003-5d6e-8bdb-1e00b727b04a", "id": "CVE-2022-2047", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-2047 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-aggregate-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6966ed6c-c3b9-5fa9-ad8d-f05c7d28f390", "id": "CVE-2022-2048", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-2048 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-aggregate-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ce00cce0-7013-5cf5-8d6f-5418a19e9403", "id": "CVE-2023-26048", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26048 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-aggregate-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:59120fdd-f6a6-5954-8e8e-0c09603e9b65", "id": "CVE-2023-26049", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26049 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-aggregate-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d876f8ee-1cdf-5365-9a43-629678f57857", "id": "CVE-2023-36479", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-36479 is fixed in version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-aggregate-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:eedf987f-c179-5650-b5e8-f70bc8f37519", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-aggregate-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:211d73c3-ac2a-5a6b-ba5a-51fb8e8f7ba6", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-aggregate-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:62750eb5-49ec-5370-8ff2-bcc3b7549c47", "id": "CVE-2024-13009", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-13009 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-aggregate-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d73831b2-0664-5798-8a39-20235a6323e6", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-aggregate-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:de2325be-e998-5712-9a90-9a04cba470b3", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-aggregate-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ec5a9e57-6278-535b-a2d9-b99d8a7c7e58", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-aggregate-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d8d121a9-d368-56ea-89d4-071d7b16c7bd", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-aggregate-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9401f89f-d78b-597b-9ea8-2a9efba5938c", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-aggregate-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:00f1aacb-cb37-5de0-9f4e-e5e018ee247c", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-aggregate-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:93c70fc6-d89d-58c7-b887-c2a7a34944d3", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-aggregate-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ce72ecb5-f311-5ff8-ae88-5e2d10b864d3", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-aggregate-project." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@7.6.0.v20120127-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-aggregate-project@7.6.0.v20120127-tuxcare.1" } ] }