{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:0618b483-b19c-5466-8d02-d27eb8e260cd", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-policy@7.6.0.v20120127-tuxcare.1", "type": "library", "group": "org.eclipse.jetty", "name": "jetty-policy", "version": "7.6.0.v20120127-tuxcare.1", "purl": "pkg:maven/org.eclipse.jetty/jetty-policy@7.6.0.v20120127-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:92ad8573-256e-5cfc-8310-33221cfdad86", "id": "CVE-2011-4461", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2011-4461 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-policy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-policy@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c9951b65-3d9d-5cb2-8a06-9b10e2bd0e3d", "id": "CVE-2015-2080", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-2080 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-policy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-policy@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7c77eef6-2b77-59c0-8856-4ec1412cee3c", "id": "CVE-2017-7656", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7656 is fixed in version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-policy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-policy@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6c336a83-0fad-511a-a8c0-5b6bf7b52c44", "id": "CVE-2017-7657", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-7657 is fixed in version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-policy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-policy@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:08d62c43-4f97-5e6c-8289-c31ea1167307", "id": "CVE-2017-7658", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7658 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-policy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-policy@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f97f1c31-33bd-59d1-8d6a-d6e4cc2ce413", "id": "CVE-2017-9735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-9735 is fixed in version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-policy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-policy@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:767b43da-12d2-5432-ac3e-b45553a3c978", "id": "CVE-2018-12536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12536 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-policy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-policy@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c100bdf7-5a34-5fc1-814e-af2c8b9f960f", "id": "CVE-2018-12538", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12538 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-policy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-policy@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b271cdbb-c7b8-5f5a-8032-9246da9213a2", "id": "CVE-2018-12545", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-12545 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-policy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-policy@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:eb7e66d7-cafe-5c84-8c91-3b3a8fb619df", "id": "CVE-2019-10241", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10241 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-policy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-policy@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e2bd7cba-14d1-5bdb-96e3-db31f6c47a60", "id": "CVE-2019-10246", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10246 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-policy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-policy@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b7c492c1-8055-5437-8189-1a34f2cb82a9", "id": "CVE-2019-10247", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-10247 is fixed in version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-policy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-policy@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9536e402-0e31-5a6e-a7fe-952d0d6e05f0", "id": "CVE-2019-17638", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-17638 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-policy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-policy@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:340f7725-2717-5cba-8182-6d2a997e69cd", "id": "CVE-2020-27216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27216 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-policy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-policy@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:77e96ae6-6dae-5f90-a487-175d77e7bb5a", "id": "CVE-2020-27218", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27218 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-policy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-policy@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3d06ecb8-272c-5ece-a6c8-431433f84797", "id": "CVE-2021-28165", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-28165 is fixed in version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-policy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-policy@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1ece9fb5-9d45-5cbc-9197-65b76bcdd0d7", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-policy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-policy@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9e0d1092-0d33-534b-9468-2e468d3112b0", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-policy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-policy@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:85fa2b05-a440-5e24-9e0c-b9623232345f", "id": "CVE-2022-2047", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-2047 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-policy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-policy@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:eb905c3e-e471-5c1c-9c6a-15ca5bd9de98", "id": "CVE-2022-2048", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-2048 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-policy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-policy@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:18e7b61e-33f9-5c9d-b046-4c5573c5b1f4", "id": "CVE-2023-26048", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26048 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-policy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-policy@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:57cb0400-44d0-52b1-a2a6-743543eaf60a", "id": "CVE-2023-26049", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26049 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-policy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-policy@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0876afe7-06a9-5bbc-a502-643118fa2ab8", "id": "CVE-2023-36479", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-36479 is fixed in version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-policy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-policy@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7978f6d2-7cb9-5121-982b-540e25e320c7", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-policy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-policy@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b47e8996-4799-508f-88de-becf12ef6fb4", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-policy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-policy@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1ce9b21b-0dad-54d9-860f-8cb979eb584f", "id": "CVE-2024-13009", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-13009 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-policy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-policy@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6294b038-8776-5a3d-b6f2-5c8de2fefabf", "id": "CVE-2024-6762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6762 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-policy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-policy@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1cdab86a-6be7-58e2-b1aa-8f0669a1b2f6", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-policy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-policy@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:df2089a1-3c3c-5235-9a70-4d10315a86f4", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-policy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-policy@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1b6dfbbf-a8b8-5c9d-a5ea-734c7d833051", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-policy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-policy@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a26044d4-bdaf-52b5-9dc1-255c58f92b1a", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-policy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-policy@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7883770e-73f4-5493-bbe2-dcb7125f850c", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-policy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-policy@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2029c094-a2c6-517e-9b64-734cbf34cee8", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-policy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-policy@7.6.0.v20120127-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:77b0abae-dffc-5a77-94c5-2462b14eadf1", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 7.6.0.v20120127-tuxcare.1 of org.eclipse.jetty:jetty-policy." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-policy@7.6.0.v20120127-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-policy@7.6.0.v20120127-tuxcare.1" } ] }