{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:ef50cb8b-5b24-59ec-a465-a2614f069545", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-webapp@7.6.0.v20120127-tuxcare.1", "type": "library", "group": "org.eclipse.jetty.aggregate", "name": "jetty-webapp", "version": "7.6.0.v20120127-tuxcare.1", "purl": "pkg:maven/org.eclipse.jetty.aggregate/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:4b7450d1-1e72-5cc3-9b5f-6678a2cd7220", "id": "CVE-2011-4461", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2011-4461 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:60ec917d-ef55-5334-a420-bf1bd9600994", "id": "CVE-2015-2080", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-2080 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b72ced6a-de10-5c1b-80f9-aa1e5c73c83b", "id": "CVE-2017-7656", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7656 is fixed in version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6bcc9e80-19a7-5efd-a1a1-d4f7b9605b89", "id": "CVE-2017-7657", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7657 is fixed in version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3e43daf2-9591-5dc3-bc6c-da35d954fe78", "id": "CVE-2017-7658", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7658 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c22fa1f2-3f2e-5059-82f7-01c37ea4d0ba", "id": "CVE-2017-9735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-9735 is fixed in version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bada25cd-5faa-5f1a-9874-4664d3378b1f", "id": "CVE-2018-12536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12536 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:907c32a0-e48c-55f0-bb91-83ac623fc9b5", "id": "CVE-2018-12538", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12538 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d6fb0c28-14f3-5aa0-816d-5d8485c83f57", "id": "CVE-2018-12545", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12545 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c7bf3b5b-dfa5-508f-85c9-ef44cfe781fd", "id": "CVE-2019-10241", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10241 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:aee25be2-4833-5cb7-bde2-04c422e4427f", "id": "CVE-2019-10246", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10246 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:364cef0e-d440-5940-b0e9-89a07ec2f7a6", "id": "CVE-2019-10247", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-10247 is fixed in version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a1616f41-9076-5e16-8c04-2792323292b3", "id": "CVE-2019-17638", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-17638 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cbb05c45-079a-5526-9d69-f6d0d5697c21", "id": "CVE-2020-27216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27216 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c3941eac-161e-51d1-81e4-07c67eadc16b", "id": "CVE-2020-27218", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27218 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b5db014a-5c06-5b3f-b592-b0e633185936", "id": "CVE-2021-28165", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-28165 is fixed in version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d2c8fb1e-d877-5e7d-9aca-6aa43036007d", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e950616c-b028-54b0-b73a-6fdc69e48060", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a846a7ab-5241-517a-98bd-f53ab78a1f80", "id": "CVE-2022-2047", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-2047 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7efd2469-3086-52dc-8509-1ecd8aac898c", "id": "CVE-2022-2048", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-2048 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ea7d76ff-4841-5f91-a1b4-f5432f6ed983", "id": "CVE-2023-26048", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26048 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a3fdef54-dcbe-569f-979c-38bc1b6529e5", "id": "CVE-2023-26049", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26049 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6d39a93c-372f-50b6-adbb-b0ec63a51c7f", "id": "CVE-2023-36479", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-36479 is fixed in version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5551d2d8-551f-5de0-8a8b-96ba67779ee5", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ee50a63e-d49c-5b21-a027-fd55f63d7f02", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:092b9eb5-b620-59ef-95d3-f40134cd655b", "id": "CVE-2024-13009", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-13009 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dc201167-4fa6-55f3-95c3-366afc46aa3b", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a59480ea-3ed4-5801-a9c0-3170c0ce3585", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f5387897-43b0-50b8-b714-cfef9ef5cafc", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b7bf3cb3-e640-552d-b546-59e7f421cae0", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:84f96805-aefb-5ae6-84da-34148ae10e06", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6cdc98a2-5fc3-5fdd-ab92-b7ab16dee0e9", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:002d9354-a7ce-579b-85ed-b8bd31467a75", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d46c58c4-a4be-5751-8b0b-66d7f600acc5", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty.aggregate:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty.aggregate/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }