{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:f9e2391b-7070-578c-93c3-e727d0435fbb", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@7.6.0.v20120127-tuxcare.1", "type": "library", "group": "org.eclipse.jetty", "name": "jetty-webapp", "version": "7.6.0.v20120127-tuxcare.1", "purl": "pkg:maven/org.eclipse.jetty/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:903258bc-4692-56ec-af2f-6f2b49a74181", "id": "CVE-2011-4461", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2011-4461 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3b2c3318-96a1-53b2-8f7e-679bd6ce735d", "id": "CVE-2015-2080", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-2080 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4ed07d69-e096-5a88-8cf4-f9daf85f3e59", "id": "CVE-2017-7656", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7656 is fixed in version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:59aad975-858e-50ee-9a6c-036be7d164f7", "id": "CVE-2017-7657", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7657 is fixed in version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:23a5897e-d432-5244-a8ac-a147e59faa5f", "id": "CVE-2017-7658", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7658 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ef86cf93-d6ea-5db8-8aca-99186a66a7bc", "id": "CVE-2017-9735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-9735 is fixed in version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:17f58aa4-55c2-53a5-9dfe-e398b0c63169", "id": "CVE-2018-12536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12536 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:61f4574f-4c52-5be4-b353-e3606ce8c193", "id": "CVE-2018-12538", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12538 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5fdfa620-a626-5637-b1fd-3f6aee217aec", "id": "CVE-2018-12545", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12545 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7e216378-063b-5cfe-8c0e-399c6096cfe6", "id": "CVE-2019-10241", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10241 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:03e3bab4-470e-5f8a-b13e-3a36c8ca87f7", "id": "CVE-2019-10246", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10246 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:95fada72-c712-5ab5-83c3-587a0ded3577", "id": "CVE-2019-10247", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-10247 is fixed in version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c987be0d-e97e-5086-a287-83c44646ef2e", "id": "CVE-2019-17638", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-17638 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:34cdfe3d-9d11-5c01-8673-fff97e10a240", "id": "CVE-2020-27216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27216 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8deb1710-6b7e-52a4-bd26-e9604a6bb7d6", "id": "CVE-2020-27218", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27218 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:49cd6ba1-a3fd-5d89-be50-2989431645a4", "id": "CVE-2021-28165", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-28165 is fixed in version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1efc8609-b053-526e-932b-38cc21040ace", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c10a45c4-a65c-51fa-b40a-ad6c704e836b", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:135dfc65-aca3-507e-880d-eab0ccf68c23", "id": "CVE-2022-2047", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-2047 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1a2edda7-0406-58a7-a721-b88fbc4706c4", "id": "CVE-2022-2048", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-2048 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:46d828be-12c3-5454-8c14-8d4011c34c89", "id": "CVE-2023-26048", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26048 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:868eba21-ad10-536c-a110-69119d2a418a", "id": "CVE-2023-26049", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26049 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:96c367f0-c969-5865-b356-e7366d11adbc", "id": "CVE-2023-36479", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-36479 is fixed in version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ae65f2a5-6962-530d-926f-e7069e2d1134", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:eff822e1-f365-53ef-9066-73dd325c972b", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4b068c7d-4102-5512-b525-aa89a3c99642", "id": "CVE-2024-13009", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-13009 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6974b02a-b7b4-5e97-9647-b7f95fe64913", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a431cb06-1c9d-55fe-82cf-c6cbf099da88", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0361169d-e924-5f5a-8ef7-d00f88c0579f", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ff6e5008-04f0-5a97-98ff-5f62c2c6a97e", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b62a7ef8-346c-5c69-9b6a-d1511e4f4cb3", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7ca24d39-0e0b-5a6e-a581-d583d6f389ba", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:77a56c6a-905d-573f-a89f-9ac977a61196", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e4c4f920-6fa3-592a-9eef-1b4c8c896add", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-webapp." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-webapp@7.6.0.v20120127-tuxcare.1" } ] }