{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:3672cb84-2ab1-57e2-b44b-4b68e2f9f2ee", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty.memcached/memcached-parent@9.4.57.v20241219-tuxcare.3", "type": "library", "group": "org.eclipse.jetty.memcached", "name": "memcached-parent", "version": "9.4.57.v20241219-tuxcare.3", "purl": "pkg:maven/org.eclipse.jetty.memcached/memcached-parent@9.4.57.v20241219-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:6412de30-a96b-52d0-95d0-40e61b530a72", "id": "CVE-2020-25711", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-25711 affects version 9.4.57.v20241219-tuxcare.3 of org.eclipse.jetty.memcached:memcached-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.memcached/memcached-parent@9.4.57.v20241219-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7654a7ad-be67-5d64-b606-548e6b4cb7c5", "id": "CVE-2020-27216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27216 affects version 9.4.57.v20241219-tuxcare.3 of org.eclipse.jetty.memcached:memcached-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.memcached/memcached-parent@9.4.57.v20241219-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d22e74d1-438a-50ef-81fb-72eda9090150", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 9.4.57.v20241219-tuxcare.3 of org.eclipse.jetty.memcached:memcached-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.memcached/memcached-parent@9.4.57.v20241219-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a2457b9a-226c-59ee-957f-fbb4525f7a19", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 9.4.57.v20241219-tuxcare.3 of org.eclipse.jetty.memcached:memcached-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.memcached/memcached-parent@9.4.57.v20241219-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:816c823a-afac-50c5-9f99-8126eb1557f9", "id": "CVE-2023-36478", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36478 affects version 9.4.57.v20241219-tuxcare.3 of org.eclipse.jetty.memcached:memcached-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.memcached/memcached-parent@9.4.57.v20241219-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7c5280a1-a6f8-569a-bbb8-dc29360259df", "id": "CVE-2023-36479", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36479 affects version 9.4.57.v20241219-tuxcare.3 of org.eclipse.jetty.memcached:memcached-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.memcached/memcached-parent@9.4.57.v20241219-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:21e93b1a-bed1-5fad-93fa-63e654848c9d", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 9.4.57.v20241219-tuxcare.3 of org.eclipse.jetty.memcached:memcached-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.memcached/memcached-parent@9.4.57.v20241219-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4ad29678-85c3-5da9-8569-9c60231f2d15", "id": "CVE-2023-41900", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-41900 affects version 9.4.57.v20241219-tuxcare.3 of org.eclipse.jetty.memcached:memcached-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.memcached/memcached-parent@9.4.57.v20241219-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:650ab5bc-159c-541d-bb80-1e04ae6b6321", "id": "CVE-2024-22201", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22201 affects version 9.4.57.v20241219-tuxcare.3 of org.eclipse.jetty.memcached:memcached-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.memcached/memcached-parent@9.4.57.v20241219-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5d0e812b-9b1b-581b-a161-4fcce8cc8605", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 9.4.57.v20241219-tuxcare.3 of org.eclipse.jetty.memcached:memcached-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.memcached/memcached-parent@9.4.57.v20241219-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:40f5f594-3b3b-5502-a857-81f4e869e0f5", "id": "CVE-2024-6763", "analysis": { "state": "not_affected", "detail": "Vulnerability CVE-2024-6763 does not affect version 9.4.57.v20241219-tuxcare.3 of org.eclipse.jetty.memcached:memcached-parent. fix for CVE for this version has been already backported by the original developers, so this brunch is not vulnerable" }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.memcached/memcached-parent@9.4.57.v20241219-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9b40edf6-76eb-5136-8cda-13f0320fb08b", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 9.4.57.v20241219-tuxcare.3 of org.eclipse.jetty.memcached:memcached-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.memcached/memcached-parent@9.4.57.v20241219-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:051b9310-72fe-5341-94fe-1e72ff31c95c", "id": "CVE-2025-11143", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-11143 is fixed in version 9.4.57.v20241219-tuxcare.3 of org.eclipse.jetty.memcached:memcached-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.memcached/memcached-parent@9.4.57.v20241219-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:07f237ad-8963-5b5e-9483-3e85f6553503", "id": "CVE-2025-5115", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-5115 is fixed in version 9.4.57.v20241219-tuxcare.3 of org.eclipse.jetty.memcached:memcached-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.memcached/memcached-parent@9.4.57.v20241219-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8fefef55-e6e7-538e-929b-c358df6d5fb2", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 9.4.57.v20241219-tuxcare.3 of org.eclipse.jetty.memcached:memcached-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.memcached/memcached-parent@9.4.57.v20241219-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b6b9a851-5aa5-50fd-a1d6-165cccd5f2ee", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 9.4.57.v20241219-tuxcare.3 of org.eclipse.jetty.memcached:memcached-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.memcached/memcached-parent@9.4.57.v20241219-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e8fc2475-69d1-51d2-92d1-48f10ed95b87", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 9.4.57.v20241219-tuxcare.3 of org.eclipse.jetty.memcached:memcached-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.memcached/memcached-parent@9.4.57.v20241219-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0a816b30-d4f6-5ab2-b2b0-0fc8db9ed53c", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 9.4.57.v20241219-tuxcare.3 of org.eclipse.jetty.memcached:memcached-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.memcached/memcached-parent@9.4.57.v20241219-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty.memcached/memcached-parent@9.4.57.v20241219-tuxcare.3" } ] }