{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:6da80065-d461-5522-bc48-73aaa276ccf5", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty.websocket/jetty-websocket-tests@9.4.48.v20220622-tuxcare.1", "type": "library", "group": "org.eclipse.jetty.websocket", "name": "jetty-websocket-tests", "version": "9.4.48.v20220622-tuxcare.1", "purl": "pkg:maven/org.eclipse.jetty.websocket/jetty-websocket-tests@9.4.48.v20220622-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:1456def4-2bf7-5dbc-9203-f4dd09512dbc", "id": "CVE-2020-27216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27216 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty.websocket:jetty-websocket-tests." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/jetty-websocket-tests@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:65699171-0b51-5cd4-bf3a-9c750587d889", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty.websocket:jetty-websocket-tests." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/jetty-websocket-tests@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:61bf5172-28a4-5f78-9cda-55ce98611822", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty.websocket:jetty-websocket-tests." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/jetty-websocket-tests@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:eec8a353-9f56-5194-902e-62f0717b74bc", "id": "CVE-2023-26048", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26048 is fixed in version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty.websocket:jetty-websocket-tests." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/jetty-websocket-tests@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4fe0a8dd-9fe4-53c5-a675-35a68c9a2c09", "id": "CVE-2023-26049", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26049 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty.websocket:jetty-websocket-tests." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/jetty-websocket-tests@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3ad2307f-e9fc-5ace-9f79-f9dc3dd09173", "id": "CVE-2023-36478", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36478 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty.websocket:jetty-websocket-tests." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/jetty-websocket-tests@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fc7200b7-8c4c-55c0-8300-d98f81110f23", "id": "CVE-2023-36479", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36479 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty.websocket:jetty-websocket-tests." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/jetty-websocket-tests@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:97784772-3a09-5d62-97ee-6daa643bfeb8", "id": "CVE-2023-40167", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-40167 is fixed in version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty.websocket:jetty-websocket-tests." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/jetty-websocket-tests@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f6e7fed6-8a4a-5d91-99bd-07ddb0697620", "id": "CVE-2023-41900", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-41900 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty.websocket:jetty-websocket-tests." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/jetty-websocket-tests@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d307c326-a4af-576e-8fa4-25c646783cf9", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty.websocket:jetty-websocket-tests." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/jetty-websocket-tests@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8bb27cfe-09d3-59e1-80ef-a4313bc2b931", "id": "CVE-2024-13009", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-13009 is fixed in version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty.websocket:jetty-websocket-tests." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/jetty-websocket-tests@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4d7b9308-cbf3-5d9d-8e2e-30b563d2f68b", "id": "CVE-2024-22201", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22201 is fixed in version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty.websocket:jetty-websocket-tests." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/jetty-websocket-tests@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:893f697c-6722-5170-8c06-88b6bbd8bad1", "id": "CVE-2024-6762", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-6762 is fixed in version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty.websocket:jetty-websocket-tests." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/jetty-websocket-tests@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1aaeb854-ce52-5515-aa19-8ba1db91dcc4", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty.websocket:jetty-websocket-tests." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/jetty-websocket-tests@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:68f4e9c2-50f8-58c0-ab35-9755f34b5299", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty.websocket:jetty-websocket-tests." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/jetty-websocket-tests@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:09f3702a-2515-54b9-bab1-a6e1fbbe2aeb", "id": "CVE-2024-9823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-9823 is fixed in version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty.websocket:jetty-websocket-tests." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/jetty-websocket-tests@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d081be9a-df4e-5d70-9f77-f199a45d15e7", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty.websocket:jetty-websocket-tests." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/jetty-websocket-tests@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:06d2e186-f134-5231-8dba-cc7f587e3a23", "id": "CVE-2025-5115", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-5115 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty.websocket:jetty-websocket-tests." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/jetty-websocket-tests@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:93a90199-f325-5013-b31b-222553a193fb", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty.websocket:jetty-websocket-tests." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/jetty-websocket-tests@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6dc19740-3931-5169-bbff-c2448cf0566e", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty.websocket:jetty-websocket-tests." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/jetty-websocket-tests@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f7d6b28b-6349-5218-8c65-d7bfb2f54c5a", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty.websocket:jetty-websocket-tests." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/jetty-websocket-tests@9.4.48.v20220622-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/jetty-websocket-tests@9.4.48.v20220622-tuxcare.1" } ] }