{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:88c05df9-a7b0-5b19-8250-eb7a921e466b", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-core-common@10.0.26-tuxcare.1", "type": "library", "group": "org.eclipse.jetty.websocket", "name": "websocket-core-common", "version": "10.0.26-tuxcare.1", "purl": "pkg:maven/org.eclipse.jetty.websocket/websocket-core-common@10.0.26-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:14c7ee6b-1a36-582a-94e4-c50587937752", "id": "CVE-2020-25711", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-25711 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.websocket:websocket-core-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-core-common@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8c5665c9-e9e7-545e-955a-55b9a490c19d", "id": "CVE-2020-27216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27216 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.websocket:websocket-core-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-core-common@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:24d89d0b-140d-5ba7-a170-a1dfb43d5a91", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.websocket:websocket-core-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-core-common@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5676c628-0a26-5fc4-9756-4412003cd9ee", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.websocket:websocket-core-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-core-common@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e61f5ce0-d71c-5d0d-b05e-5c6e3721ffbc", "id": "CVE-2023-36478", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36478 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.websocket:websocket-core-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-core-common@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:aa95c3d6-5d6f-50c2-a1fb-2ead72f936a5", "id": "CVE-2023-36479", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36479 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.websocket:websocket-core-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-core-common@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4ba88269-f83f-5108-a77a-1a0796802d19", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.websocket:websocket-core-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-core-common@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:47e5820a-a7b6-5351-b61b-7dad929593dc", "id": "CVE-2023-41900", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-41900 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.websocket:websocket-core-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-core-common@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cde30ce0-9424-56a0-aa5d-d250901bc40c", "id": "CVE-2024-22201", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22201 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.websocket:websocket-core-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-core-common@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c75a0edc-2ef2-561d-bad1-020707f1ac58", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.websocket:websocket-core-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-core-common@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d6479b12-d654-52c4-9c67-523326ea424b", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.websocket:websocket-core-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-core-common@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4361e6aa-d49d-52e8-a62c-cb4609033c08", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.websocket:websocket-core-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-core-common@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5d1db4e6-1ee3-5dfb-ac42-26ab85a4bd08", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.websocket:websocket-core-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-core-common@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f54ff57b-208e-5ff3-8a15-730d8fec56e0", "id": "CVE-2025-5115", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-5115 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.websocket:websocket-core-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-core-common@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:90f07491-5700-5a61-be17-316f9a0b05d6", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.websocket:websocket-core-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-core-common@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7d348312-7de8-5973-875e-4587ead4cefd", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.websocket:websocket-core-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-core-common@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bcbe64f1-b336-5b23-b9ec-6101ba71ad20", "id": "CVE-2026-5795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-5795 is fixed in version 10.0.26-tuxcare.1 of org.eclipse.jetty.websocket:websocket-core-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-core-common@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bdc6229c-da4b-5d73-9932-05c7cf5d0f2f", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.websocket:websocket-core-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-core-common@10.0.26-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-core-common@10.0.26-tuxcare.1" } ] }