{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:c980c95d-fbf2-54e8-9aac-1ca301488850", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-server@9.4.48.v20220622-tuxcare.1", "type": "library", "group": "org.eclipse.jetty.fcgi", "name": "fcgi-server", "version": "9.4.48.v20220622-tuxcare.1", "purl": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-server@9.4.48.v20220622-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:e48d02e0-1e08-50fa-9877-bbbddedb9c83", "id": "CVE-2020-27216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27216 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty.fcgi:fcgi-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-server@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f98ba747-15cc-53fe-b24c-ad39d565bb65", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty.fcgi:fcgi-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-server@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e2361f21-3a7b-59dc-93de-4c83ec34f84d", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty.fcgi:fcgi-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-server@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7d85f246-a632-587f-b3f5-3d9fefc17f08", "id": "CVE-2023-26048", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26048 is fixed in version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty.fcgi:fcgi-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-server@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c0a49847-5b9c-5ed6-ac6d-d0d830580511", "id": "CVE-2023-26049", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26049 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty.fcgi:fcgi-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-server@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3b20f368-597f-5804-bb6c-d4ef3c5d67b8", "id": "CVE-2023-36478", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36478 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty.fcgi:fcgi-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-server@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:422fcd29-0c43-573b-b0e9-ad00eaee3f15", "id": "CVE-2023-36479", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36479 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty.fcgi:fcgi-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-server@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:812a1271-2c29-5dd2-98b9-11f760e6312a", "id": "CVE-2023-40167", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-40167 is fixed in version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty.fcgi:fcgi-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-server@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7851d620-1d91-5a21-84d0-0e7afbb07415", "id": "CVE-2023-41900", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-41900 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty.fcgi:fcgi-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-server@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b8320e68-e0b6-5034-9f3c-cce8bb388c49", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty.fcgi:fcgi-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-server@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6807f263-748e-559c-b5d5-401162b36644", "id": "CVE-2024-13009", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-13009 is fixed in version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty.fcgi:fcgi-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-server@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2b43015b-0af2-5b3b-a6de-322e43ed43e3", "id": "CVE-2024-22201", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22201 is fixed in version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty.fcgi:fcgi-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-server@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f13207d3-24a4-57e8-a7e7-1345380994ae", "id": "CVE-2024-6762", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-6762 is fixed in version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty.fcgi:fcgi-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-server@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:845bcce4-2a0e-5f4c-b094-3dff7604b0dd", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty.fcgi:fcgi-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-server@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:525497d7-929b-5fc9-b823-6aada24bd075", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty.fcgi:fcgi-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-server@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:53de7594-413e-5e6b-bdc8-87eee976712e", "id": "CVE-2024-9823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-9823 is fixed in version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty.fcgi:fcgi-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-server@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b81349a6-aeab-5fdd-ba85-67434e54e8eb", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty.fcgi:fcgi-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-server@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a24bf72c-b405-5cfa-a63e-696b1dea5b03", "id": "CVE-2025-5115", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-5115 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty.fcgi:fcgi-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-server@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8189ccbf-2622-5860-9440-19d9749c6f5e", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty.fcgi:fcgi-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-server@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a2925a58-36cb-5b9b-b4ee-983b5124505d", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty.fcgi:fcgi-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-server@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6049dcd9-6ab1-5556-92a5-f9e1baf1d408", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty.fcgi:fcgi-server." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-server@9.4.48.v20220622-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty.fcgi/fcgi-server@9.4.48.v20220622-tuxcare.1" } ] }