{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:63e0ec6f-ce93-59f6-a683-f62708bc7274", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty.websocket/jetty-websocket-tests@9.4.58.v20250814-tuxcare.1", "type": "library", "group": "org.eclipse.jetty.websocket", "name": "jetty-websocket-tests", "version": "9.4.58.v20250814-tuxcare.1", "purl": "pkg:maven/org.eclipse.jetty.websocket/jetty-websocket-tests@9.4.58.v20250814-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:91ac2ed7-53a8-51d4-b0e5-3162a5dc51ec", "id": "CVE-2020-27216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27216 affects version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty.websocket:jetty-websocket-tests." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/jetty-websocket-tests@9.4.58.v20250814-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6a4c4fa1-3b71-5800-94bc-4f7d6e5684cc", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty.websocket:jetty-websocket-tests." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/jetty-websocket-tests@9.4.58.v20250814-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2f62d307-cb5a-50d4-884a-01ee40880cec", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty.websocket:jetty-websocket-tests." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/jetty-websocket-tests@9.4.58.v20250814-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f2bad1f4-b33a-50a5-8f74-85c93aa412a2", "id": "CVE-2023-36478", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36478 affects version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty.websocket:jetty-websocket-tests." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/jetty-websocket-tests@9.4.58.v20250814-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0e42966d-3189-50f1-a39a-a68ae79ec55b", "id": "CVE-2023-36479", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36479 affects version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty.websocket:jetty-websocket-tests." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/jetty-websocket-tests@9.4.58.v20250814-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:45e4065a-37a5-5b9d-8178-c9256f6a6996", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty.websocket:jetty-websocket-tests." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/jetty-websocket-tests@9.4.58.v20250814-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:55d0fab4-1277-5e3e-9df7-e1c6d4c97dba", "id": "CVE-2023-41900", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-41900 affects version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty.websocket:jetty-websocket-tests." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/jetty-websocket-tests@9.4.58.v20250814-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:46ebe8df-32b0-5e02-bd43-400eea7ea8f9", "id": "CVE-2024-22201", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22201 affects version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty.websocket:jetty-websocket-tests." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/jetty-websocket-tests@9.4.58.v20250814-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:90650746-140c-5b00-a359-eabe47784dbd", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty.websocket:jetty-websocket-tests." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/jetty-websocket-tests@9.4.58.v20250814-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ebd73786-f38b-5ffb-a4da-60aa09ce4f5f", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty.websocket:jetty-websocket-tests." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/jetty-websocket-tests@9.4.58.v20250814-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0955d97b-beeb-502a-a243-cc171e5bb0bd", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty.websocket:jetty-websocket-tests." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/jetty-websocket-tests@9.4.58.v20250814-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:65800b6f-b84e-5fa4-9b17-58cf94e03943", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty.websocket:jetty-websocket-tests." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/jetty-websocket-tests@9.4.58.v20250814-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c881916d-6fe8-5784-8438-5d5daaeeee4a", "id": "CVE-2025-5115", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-5115 affects version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty.websocket:jetty-websocket-tests." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/jetty-websocket-tests@9.4.58.v20250814-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:44506a29-8e19-5750-8c29-07885b2c6fd1", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty.websocket:jetty-websocket-tests." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/jetty-websocket-tests@9.4.58.v20250814-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7d748ba4-62c6-52e6-8af3-7d408d441fc0", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty.websocket:jetty-websocket-tests." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/jetty-websocket-tests@9.4.58.v20250814-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d8d17215-39e1-5ca1-837e-a55d77769eb1", "id": "CVE-2026-5795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-5795 is fixed in version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty.websocket:jetty-websocket-tests." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/jetty-websocket-tests@9.4.58.v20250814-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b96eaa85-4a2d-571e-83de-9cc795306a8d", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 9.4.58.v20250814-tuxcare.1 of org.eclipse.jetty.websocket:jetty-websocket-tests." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/jetty-websocket-tests@9.4.58.v20250814-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/jetty-websocket-tests@9.4.58.v20250814-tuxcare.1" } ] }