{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:604ac314-5c4f-53dc-864a-388c71cb9676", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-hazelcast@9.4.50.v20221201-tuxcare.1", "type": "library", "group": "org.eclipse.jetty", "name": "jetty-hazelcast", "version": "9.4.50.v20221201-tuxcare.1", "purl": "pkg:maven/org.eclipse.jetty/jetty-hazelcast@9.4.50.v20221201-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:4b31f04e-f260-53ce-85e5-00cc9a7ea938", "id": "CVE-2020-25711", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-25711 affects version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-hazelcast." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-hazelcast@9.4.50.v20221201-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:62720ef4-8c58-5e65-b782-8c0fddd910a5", "id": "CVE-2020-27216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27216 affects version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-hazelcast." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-hazelcast@9.4.50.v20221201-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cf9993cc-a45b-59e1-90c5-b21e7382a362", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-hazelcast." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-hazelcast@9.4.50.v20221201-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:186c37a5-9667-5df7-8185-019ee30f03ed", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-hazelcast." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-hazelcast@9.4.50.v20221201-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:78e2429d-6e7e-53af-8033-8d176730a3fb", "id": "CVE-2023-26048", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26048 is fixed in version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-hazelcast." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-hazelcast@9.4.50.v20221201-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:291029ed-a012-5beb-9720-e7dee2407e14", "id": "CVE-2023-26049", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26049 is fixed in version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-hazelcast." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-hazelcast@9.4.50.v20221201-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:08b8a60b-2d53-5ebc-ba45-3835a1d8886e", "id": "CVE-2023-36478", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36478 affects version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-hazelcast." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-hazelcast@9.4.50.v20221201-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:07fa8321-2d03-5e8e-8b9c-2f8b650ed62e", "id": "CVE-2023-36479", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-36479 is fixed in version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-hazelcast." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-hazelcast@9.4.50.v20221201-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:526c345d-d06a-5c7e-b797-92a1fbfa3e1a", "id": "CVE-2023-40167", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-40167 is fixed in version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-hazelcast." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-hazelcast@9.4.50.v20221201-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0fa6d327-9072-550d-b136-f166a49a20fe", "id": "CVE-2023-41900", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-41900 is fixed in version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-hazelcast." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-hazelcast@9.4.50.v20221201-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fdc512f0-1b23-5e79-9725-e10f877efc4f", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-hazelcast." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-hazelcast@9.4.50.v20221201-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5d6dbd99-708e-555c-b164-543c36b38a9a", "id": "CVE-2024-13009", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-13009 is fixed in version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-hazelcast." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-hazelcast@9.4.50.v20221201-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dc0711b2-6e58-5344-9593-ad12d45b58a7", "id": "CVE-2024-22201", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22201 is fixed in version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-hazelcast." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-hazelcast@9.4.50.v20221201-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:52a8ae8c-f9b5-5a48-81af-063efac88507", "id": "CVE-2024-6762", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-6762 is fixed in version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-hazelcast." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-hazelcast@9.4.50.v20221201-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e15b02c9-489f-52ad-b102-db80b9e6082f", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-hazelcast." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-hazelcast@9.4.50.v20221201-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2db286b4-4985-596d-84bf-471d9bdf37fd", "id": "CVE-2024-8184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-8184 is fixed in version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-hazelcast." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-hazelcast@9.4.50.v20221201-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0ac0f25f-f6de-595c-9d99-43fb319a2c76", "id": "CVE-2024-9823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-9823 is fixed in version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-hazelcast." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-hazelcast@9.4.50.v20221201-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:74c9fb83-133f-54d3-8b5d-ff3a20b8ede2", "id": "CVE-2025-11143", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-11143 is fixed in version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-hazelcast." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-hazelcast@9.4.50.v20221201-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9c324fe9-8b4b-526f-abe8-7d8f994b11bd", "id": "CVE-2025-5115", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-5115 affects version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-hazelcast." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-hazelcast@9.4.50.v20221201-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:de139045-29e6-5ff2-b951-bb5493304a85", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-hazelcast." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-hazelcast@9.4.50.v20221201-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:98c8ec6b-e91a-502b-a7a5-6c4ce1d12066", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-hazelcast." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-hazelcast@9.4.50.v20221201-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:759edbce-f85b-54bf-8a17-26b92c049fbb", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-hazelcast." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-hazelcast@9.4.50.v20221201-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0e48cdf4-eba4-5d51-b93b-a3b9eb879e01", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "resolved", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh is fixed in version 9.4.50.v20221201-tuxcare.1 of org.eclipse.jetty:jetty-hazelcast." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-hazelcast@9.4.50.v20221201-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-hazelcast@9.4.50.v20221201-tuxcare.1" } ] }