{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:193637bf-df5c-5e26-837b-1bbace8b3f87", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-rewrite@9.4.48.v20220622-tuxcare.1", "type": "library", "group": "org.eclipse.jetty", "name": "jetty-rewrite", "version": "9.4.48.v20220622-tuxcare.1", "purl": "pkg:maven/org.eclipse.jetty/jetty-rewrite@9.4.48.v20220622-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:aaf1cfaf-3313-5b9b-9184-b7ac9425f47f", "id": "CVE-2020-27216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27216 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-rewrite." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-rewrite@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c987c21b-d869-5706-8c7d-3ec8d733692e", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-rewrite." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-rewrite@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:18be136c-eb87-5a86-b44d-5ecb949e862a", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-rewrite." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-rewrite@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3d00d657-b458-5451-aa30-b8b46db34872", "id": "CVE-2023-26048", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26048 is fixed in version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-rewrite." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-rewrite@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7404a85c-954f-53e2-963b-14e2a4944307", "id": "CVE-2023-26049", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26049 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-rewrite." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-rewrite@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:71f00974-74d5-504b-88fb-308cb5bc4b67", "id": "CVE-2023-36478", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36478 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-rewrite." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-rewrite@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:896803c4-2feb-5aa4-b443-4d85c06d6ca9", "id": "CVE-2023-36479", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36479 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-rewrite." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-rewrite@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c7c12f5f-44dc-5c30-975a-0d827d4bfaeb", "id": "CVE-2023-40167", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-40167 is fixed in version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-rewrite." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-rewrite@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:07952583-34ce-5488-82cb-242671a41ccd", "id": "CVE-2023-41900", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-41900 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-rewrite." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-rewrite@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b592cf3c-3e4a-5fb3-97f9-8937fc51f0fe", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-rewrite." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-rewrite@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4eedc307-02ea-50ce-9f63-cd036c670b60", "id": "CVE-2024-13009", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-13009 is fixed in version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-rewrite." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-rewrite@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4641fc08-b614-5b30-8688-70e9254db77d", "id": "CVE-2024-22201", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22201 is fixed in version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-rewrite." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-rewrite@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e0edace8-c59c-52fd-97ca-26cf26b45b10", "id": "CVE-2024-6762", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-6762 is fixed in version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-rewrite." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-rewrite@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a43b0d1b-ac45-5b80-bcae-5334dc0aad2e", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-rewrite." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-rewrite@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:691430c1-a718-52d6-8358-6e1a25cab149", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-rewrite." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-rewrite@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:10d1006e-9bfe-5b83-b01d-227814df375e", "id": "CVE-2024-9823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-9823 is fixed in version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-rewrite." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-rewrite@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:91c3d9b4-ba46-55b5-9745-5f0278da672a", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-rewrite." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-rewrite@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bff42c77-a496-5cab-856d-7cda57a21670", "id": "CVE-2025-5115", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-5115 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-rewrite." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-rewrite@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:617af393-c458-520f-b0e6-a7c99c3301c1", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-rewrite." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-rewrite@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ce6a2fae-7fb4-5241-9e73-6c64dda4667d", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-rewrite." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-rewrite@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8d16195f-2a3c-5dbb-9c0d-ad2b10ee0da1", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-rewrite." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-rewrite@9.4.48.v20220622-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-rewrite@9.4.48.v20220622-tuxcare.1" } ] }