{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:c5dc5e44-d323-54b0-8f0e-270f5ebb1ef2", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-jetty-common@10.0.26-tuxcare.1", "type": "library", "group": "org.eclipse.jetty.websocket", "name": "websocket-jetty-common", "version": "10.0.26-tuxcare.1", "purl": "pkg:maven/org.eclipse.jetty.websocket/websocket-jetty-common@10.0.26-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:cfca4d1d-fba9-5f63-a7a7-0c3100309330", "id": "CVE-2020-25711", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-25711 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.websocket:websocket-jetty-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-jetty-common@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e3270b99-42e6-5c59-abdb-25f1ad954fcc", "id": "CVE-2020-27216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27216 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.websocket:websocket-jetty-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-jetty-common@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d9c767bf-fbd0-50ba-b463-f97b8f8de941", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.websocket:websocket-jetty-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-jetty-common@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:52984ef1-705c-5e5a-aed3-1311cc4aa3d5", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.websocket:websocket-jetty-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-jetty-common@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:754b32da-322f-525a-98fe-482f90fb2ef6", "id": "CVE-2023-36478", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36478 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.websocket:websocket-jetty-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-jetty-common@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:02a70f26-7984-584a-b00e-4b58a7848f7b", "id": "CVE-2023-36479", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36479 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.websocket:websocket-jetty-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-jetty-common@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:056e7c02-b6b8-58ee-93d5-2cc2dc7db6d7", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.websocket:websocket-jetty-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-jetty-common@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:168bfe15-df11-5f62-befc-93f6405e7fa7", "id": "CVE-2023-41900", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-41900 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.websocket:websocket-jetty-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-jetty-common@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8969ab6a-809d-5fae-bab7-df137a40f134", "id": "CVE-2024-22201", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-22201 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.websocket:websocket-jetty-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-jetty-common@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3973f2d0-22d2-50af-8b3a-eae1cd966f95", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.websocket:websocket-jetty-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-jetty-common@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f09e03fb-e81a-5d1b-82c5-9ea6dff95710", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.websocket:websocket-jetty-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-jetty-common@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:53da5d11-3bbe-5404-afd5-0de25cfbfdf5", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.websocket:websocket-jetty-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-jetty-common@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:aa95e72e-d81d-5160-bda0-7fb3c1fcac59", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.websocket:websocket-jetty-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-jetty-common@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7999a505-9374-512d-8195-0de5c4bb4e7f", "id": "CVE-2025-5115", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-5115 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.websocket:websocket-jetty-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-jetty-common@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:555ad983-08b5-5790-b3d6-9c21eddb385a", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.websocket:websocket-jetty-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-jetty-common@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b5929ae4-e87f-5a0a-8b05-87248bf709e1", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.websocket:websocket-jetty-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-jetty-common@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ad5ec66b-ec45-565b-b483-a3f4ddf46fa1", "id": "CVE-2026-5795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-5795 is fixed in version 10.0.26-tuxcare.1 of org.eclipse.jetty.websocket:websocket-jetty-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-jetty-common@10.0.26-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9bcb1a5e-f1e9-5d4d-b94c-69a3a4f04d18", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 10.0.26-tuxcare.1 of org.eclipse.jetty.websocket:websocket-jetty-common." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-jetty-common@10.0.26-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty.websocket/websocket-jetty-common@10.0.26-tuxcare.1" } ] }