{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:0b35eee8-f7bb-53bc-b7c0-5f3bf49436db", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-start@9.4.50.v20221201-tuxcare.1", "type": "library", "group": "org.eclipse.jetty", "name": "jetty-start", "version": "9.4.50.v20221201-tuxcare.1", "purl": "pkg:maven/org.eclipse.jetty/jetty-start@9.4.50.v20221201-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:80e14430-2e21-545a-b2f6-63475f958174", "id": "CVE-2020-25711", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-25711 affects version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-start." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-start@9.4.50.v20221201-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8bf210ba-5667-52c5-9cf5-753660ff984c", "id": "CVE-2020-27216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27216 affects version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-start." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-start@9.4.50.v20221201-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d1c3b092-37de-50ad-9f09-458c24e2716a", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-start." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-start@9.4.50.v20221201-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:85fcd0aa-2d2f-5a9e-a07e-91f79d1f9fa8", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-start." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-start@9.4.50.v20221201-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:57ce3b02-c73d-54e6-91b5-169d8f6bd8b5", "id": "CVE-2023-26048", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26048 is fixed in version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-start." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-start@9.4.50.v20221201-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:37bb7b8f-987c-59ef-82f8-1f76e1a8bcf4", "id": "CVE-2023-26049", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26049 is fixed in version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-start." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-start@9.4.50.v20221201-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6cc7e752-dd2f-5ef0-88d5-05326c3b4df1", "id": "CVE-2023-36478", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36478 affects version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-start." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-start@9.4.50.v20221201-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:85e54d59-fb77-5d29-82ea-0da009182775", "id": "CVE-2023-36479", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-36479 is fixed in version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-start." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-start@9.4.50.v20221201-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e5c1dcbd-83a8-56e8-bacc-289825217eb6", "id": "CVE-2023-40167", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-40167 is fixed in version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-start." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-start@9.4.50.v20221201-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9833a4ec-1607-57d1-b8b9-ffd09ab15b5e", "id": "CVE-2023-41900", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-41900 is fixed in version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-start." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-start@9.4.50.v20221201-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5603ab63-d153-5c9c-963f-8dc7be65b8ab", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-start." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-start@9.4.50.v20221201-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:43b23f50-4da6-5050-9284-3c9e6f968759", "id": "CVE-2024-13009", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-13009 is fixed in version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-start." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-start@9.4.50.v20221201-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:82257850-6006-55a4-b827-716a7e13b4ea", "id": "CVE-2024-22201", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22201 is fixed in version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-start." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-start@9.4.50.v20221201-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3492bbe1-f111-59c2-9b8e-88848617d97d", "id": "CVE-2024-6762", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-6762 is fixed in version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-start." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-start@9.4.50.v20221201-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:aa4cff01-3b68-5899-a12e-240ddfc66133", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-start." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-start@9.4.50.v20221201-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e4f5f693-b11b-515c-984b-10c8998e237b", "id": "CVE-2024-8184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-8184 is fixed in version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-start." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-start@9.4.50.v20221201-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:caa18f60-fbb2-5de1-a2bf-cdee7e7aeb82", "id": "CVE-2024-9823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-9823 is fixed in version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-start." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-start@9.4.50.v20221201-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fbaeafb8-c440-515f-96f3-60e4e819389f", "id": "CVE-2025-11143", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-11143 is fixed in version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-start." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-start@9.4.50.v20221201-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a617b7a0-47e5-5cc5-a92d-ad9243d44c28", "id": "CVE-2025-5115", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-5115 affects version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-start." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-start@9.4.50.v20221201-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:77ddcb29-ee8c-5e19-bd61-d278fcaf14dd", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-start." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-start@9.4.50.v20221201-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8db9d97d-66d4-5cb2-983d-38afb4e14388", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-start." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-start@9.4.50.v20221201-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1b3db774-7b38-57f5-80d5-dca8cc0eb7d1", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-start." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-start@9.4.50.v20221201-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:16318d0e-7db5-574d-a29f-ad19fe85f312", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "resolved", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh is fixed in version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-start." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-start@9.4.50.v20221201-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-start@9.4.50.v20221201-tuxcare.1" } ] }