{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:297e0462-58c1-504a-9b1d-53b6e1319386", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-el@10.1.18-tuxcare.5", "type": "library", "group": "org.apache.tomcat.embed", "name": "tomcat-embed-el", "version": "10.1.18-tuxcare.5", "purl": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-el@10.1.18-tuxcare.5" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:8494ed7b-f0fd-560d-a146-93690da919b5", "id": "CVE-2024-23672", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-23672 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat.embed:tomcat-embed-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-el@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:405bcf4f-c2bb-58c6-ab5e-6d32e20c58a8", "id": "CVE-2024-24549", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-24549 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat.embed:tomcat-embed-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-el@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:5561bd9d-9b85-54a9-b00c-c7712d0e033e", "id": "CVE-2024-34750", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-34750 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat.embed:tomcat-embed-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-el@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:1456b090-5338-5f34-82fb-0d5ac9ba352d", "id": "CVE-2024-38286", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38286 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat.embed:tomcat-embed-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-el@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:0e672e60-a0af-5438-b104-802da829240e", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat.embed:tomcat-embed-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-el@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:4e0351ba-b650-5bd6-abbc-8f1009464213", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat.embed:tomcat-embed-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-el@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:9c987db6-8cd3-55d0-842d-c60805eb1401", "id": "CVE-2024-54677", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-54677 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat.embed:tomcat-embed-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-el@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:f5f5dbe2-bd97-5e68-bbed-ed340b1ae60d", "id": "CVE-2024-56337", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-56337 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat.embed:tomcat-embed-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-el@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:bfa17ed2-26da-50c2-a371-5c6d790a6387", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat.embed:tomcat-embed-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-el@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:66921c53-2c3e-51bb-ab9b-d8e3943e6e49", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat.embed:tomcat-embed-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-el@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:ea81a979-2cce-5234-93d0-2d9518c8e839", "id": "CVE-2025-31651", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31651 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat.embed:tomcat-embed-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-el@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:b598018f-8e36-5b8a-86cd-3578bdd456d8", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat.embed:tomcat-embed-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-el@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:aa482c7a-a76d-5cda-9763-ae811a04c5e4", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat.embed:tomcat-embed-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-el@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:a10d7f4b-5e51-5326-9e37-2cb7c4d226ff", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat.embed:tomcat-embed-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-el@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:1d1532c9-323c-55d0-84f2-fa5968c10c9a", "id": "CVE-2025-49124", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49124 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat.embed:tomcat-embed-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-el@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:2ec1e29d-c6c4-518a-b14a-431f89cf1253", "id": "CVE-2025-49125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49125 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat.embed:tomcat-embed-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-el@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:67cb1cbf-e55a-59a6-9837-e0fd61529a9e", "id": "CVE-2025-52520", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52520 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat.embed:tomcat-embed-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-el@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:0a0cbff3-eb75-5d12-a9b3-2c1ee50c67c2", "id": "CVE-2025-53506", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-53506 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat.embed:tomcat-embed-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-el@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:1b1a9153-06b7-58ef-bdb5-acd83fd7c029", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat.embed:tomcat-embed-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-el@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:34d8f418-ed4f-53f7-a974-a59ac3b13449", "id": "CVE-2025-55752", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55752 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat.embed:tomcat-embed-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-el@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:f22fcb25-bf39-52d8-8f58-3d9e81327bed", "id": "CVE-2025-55754", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55754 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat.embed:tomcat-embed-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-el@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:61307151-9bfe-5c99-969b-057ce8bfe4ab", "id": "CVE-2025-61795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61795 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat.embed:tomcat-embed-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-el@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:37e1101c-290b-5d71-bd85-b56801cd574a", "id": "CVE-2025-66614", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66614 affects version 10.1.18-tuxcare.5 of org.apache.tomcat.embed:tomcat-embed-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-el@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:4507dc77-cf5c-5294-b3f8-10a4d61e4297", "id": "CVE-2026-24733", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-24733 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat.embed:tomcat-embed-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-el@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:520d3220-7ec5-5663-8c9f-d5530873bbb4", "id": "CVE-2026-24734", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24734 affects version 10.1.18-tuxcare.5 of org.apache.tomcat.embed:tomcat-embed-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-el@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:aa0d4d5d-546f-513c-8de6-d7c0736ea71e", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 10.1.18-tuxcare.5 of org.apache.tomcat.embed:tomcat-embed-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-el@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:27ab988e-0c3b-566d-8baa-551fc6867d11", "id": "CVE-2026-25854", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-25854 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat.embed:tomcat-embed-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-el@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:c087242c-0521-5222-a61c-2d17a9d636c5", "id": "CVE-2026-29145", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-29145 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat.embed:tomcat-embed-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-el@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:2d0377e2-b539-5ce3-89c9-fbb981335604", "id": "CVE-2026-29146", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-29146 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat.embed:tomcat-embed-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-el@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:655b30ff-8652-52ba-bf66-e3bd57c19e0a", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 10.1.18-tuxcare.5 of org.apache.tomcat.embed:tomcat-embed-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-el@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:c5517cb6-5bbf-5f23-a79a-cf3f206e84a7", "id": "CVE-2026-34483", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-34483 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat.embed:tomcat-embed-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-el@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:60d0a7df-b9c4-509c-baf3-6c87aeb9c55b", "id": "CVE-2026-34486", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34486 affects version 10.1.18-tuxcare.5 of org.apache.tomcat.embed:tomcat-embed-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-el@10.1.18-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:c4ca3732-04c3-55ee-8093-0148b439e967", "id": "CVE-2026-34487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-34487 is fixed in version 10.1.18-tuxcare.5 of org.apache.tomcat.embed:tomcat-embed-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-el@10.1.18-tuxcare.5" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-el@10.1.18-tuxcare.5" } ] }