{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:f4959415-38f0-5c90-a91e-58788a030b38", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-servlet@7.6.0.v20120127-tuxcare.1", "type": "library", "group": "org.eclipse.jetty.aggregate", "name": "jetty-servlet", "version": "7.6.0.v20120127-tuxcare.1", "purl": "pkg:maven/org.eclipse.jetty.aggregate/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:5aec8bdd-ed9a-5efa-9df5-db02a0ae45eb", "id": "CVE-2011-4461", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2011-4461 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5b15b2cf-2f36-5387-adb0-552eff897f77", "id": "CVE-2015-2080", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-2080 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:45e9e0b1-7011-5ea8-bf73-f64404eacbcd", "id": "CVE-2017-7656", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7656 is fixed in version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b5461979-05ce-5b04-addd-fe628397202f", "id": "CVE-2017-7657", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7657 is fixed in version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fbe1aa9c-2a70-544c-b6ac-422f0d4ea2c9", "id": "CVE-2017-7658", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7658 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:984241d4-f61b-54b9-86ca-9da842b92abe", "id": "CVE-2017-9735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-9735 is fixed in version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:68eab1bc-d0ef-58c7-b31f-acb193c5eab3", "id": "CVE-2018-12536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12536 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:00cc073e-259b-5feb-9d95-b5f6d1093f68", "id": "CVE-2018-12538", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12538 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d1f9e327-fe52-56eb-93c6-7d602ea68e16", "id": "CVE-2018-12545", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12545 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f056e803-00c0-5278-8333-fee3c8bb7e49", "id": "CVE-2019-10241", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10241 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e79ab44b-946a-5d05-b675-b898965865ac", "id": "CVE-2019-10246", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10246 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:22a5b224-b0a0-5174-aa69-a1038fcae5a1", "id": "CVE-2019-10247", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-10247 is fixed in version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dfaf5c5c-f50d-5d49-8ad7-8f557884ac21", "id": "CVE-2019-17638", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-17638 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dcfb1613-6fd3-5fbe-8709-adba40a9d7ea", "id": "CVE-2020-27216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27216 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:af88a790-d3ae-5cf5-9ee9-f4078b9c01c2", "id": "CVE-2020-27218", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27218 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:99afb554-6daa-56ad-86a6-0c1144354c03", "id": "CVE-2021-28165", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-28165 is fixed in version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:aea2824e-4edd-53a7-bd9b-699079c3a803", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3c4851b1-d555-5894-b6ef-d7d282e80878", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ec3cde62-4b84-57f2-afaf-2d2b51962485", "id": "CVE-2022-2047", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-2047 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2047c7b9-3b33-5a67-b313-6266b4bf8b8f", "id": "CVE-2022-2048", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-2048 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f6118062-2aa6-5167-9632-200ca3df8cca", "id": "CVE-2023-26048", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26048 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:73e30c4b-6f81-5946-9caf-5ef60ca49c2b", "id": "CVE-2023-26049", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26049 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:eeae5c0b-2cbd-58eb-9673-392ff2e716e2", "id": "CVE-2023-36479", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-36479 is fixed in version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8694202a-10fd-53bf-a809-5f90ce3fa80d", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4d1ad271-c04a-5c8a-b54d-9acac4c8e932", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4227fb54-4b55-5eb3-bed0-5fb296ab74fe", "id": "CVE-2024-13009", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-13009 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b7d0f21e-ffe5-582d-8735-3c40bb160ada", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cb28f32c-50e4-5e62-8325-0b2db9997681", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f365998f-7aa5-54ce-974a-d70358ba6188", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a67a8281-8a6d-5f4b-8ecd-f4dd3a163188", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4d0ebd2e-1950-5ebe-b979-605b3252175b", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bc244cc5-6304-56e5-a6a4-21df65c50be4", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e4e61664-342d-509a-9334-3189d4411449", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a279fe19-eb5f-5a15-b54b-b454ff754537", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-servlet." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-servlet@7.6.0.v20120127-tuxcare.1" } ] }