{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:064b251b-cf4c-5d1e-9f0c-996ea1338891", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/jetty-unixsocket@9.4.48.v20220622-tuxcare.1", "type": "library", "group": "org.eclipse.jetty", "name": "jetty-unixsocket", "version": "9.4.48.v20220622-tuxcare.1", "purl": "pkg:maven/org.eclipse.jetty/jetty-unixsocket@9.4.48.v20220622-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:fc3e293f-b8da-5865-a429-f8c5976382e9", "id": "CVE-2020-27216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27216 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-unixsocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-unixsocket@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:477d6f99-2797-5d50-89da-9302417cc3cb", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-unixsocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-unixsocket@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:57eda7bb-b51e-52ee-8ef4-478e866d94d5", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-unixsocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-unixsocket@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e997b0aa-6937-5a23-aa32-5068e4bc91f6", "id": "CVE-2023-26048", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26048 is fixed in version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-unixsocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-unixsocket@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7d5769e6-be6d-5192-945d-3178c8f12aa2", "id": "CVE-2023-26049", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26049 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-unixsocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-unixsocket@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:49800622-4fc8-5a73-8bab-4ad14e82b6cf", "id": "CVE-2023-36478", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36478 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-unixsocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-unixsocket@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e6e60ab1-f70a-5c42-ab81-f1ba70d64a52", "id": "CVE-2023-36479", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36479 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-unixsocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-unixsocket@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:699f987f-3870-5fec-95ed-863a2135dfee", "id": "CVE-2023-40167", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-40167 is fixed in version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-unixsocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-unixsocket@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9721d1bc-f6bd-5a90-a1d3-3e1a95f48579", "id": "CVE-2023-41900", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-41900 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-unixsocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-unixsocket@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:01371028-5f23-5416-8e4d-6ea535c46924", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-unixsocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-unixsocket@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fe8b71ee-9633-5c11-9b13-7c46e01e93cf", "id": "CVE-2024-13009", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-13009 is fixed in version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-unixsocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-unixsocket@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f4a1722b-efce-592b-96e3-275739013459", "id": "CVE-2024-22201", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22201 is fixed in version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-unixsocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-unixsocket@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:da9b312c-fe15-57f5-85df-1d573b95c419", "id": "CVE-2024-6762", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-6762 is fixed in version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-unixsocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-unixsocket@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:422f4b46-8e7d-56a1-9e55-f52ac500a8c4", "id": "CVE-2024-6763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-6763 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-unixsocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-unixsocket@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:46f849fa-2132-5a78-bfd7-f1ceccd9d06d", "id": "CVE-2024-8184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-8184 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-unixsocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-unixsocket@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:af671fed-0c3f-5597-8011-646fef7e7e32", "id": "CVE-2024-9823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-9823 is fixed in version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-unixsocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-unixsocket@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:77be48a2-6adf-51d6-88bf-843a88bebf5c", "id": "CVE-2025-11143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-11143 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-unixsocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-unixsocket@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ccd7e2e4-13c4-5b13-b1c6-d8381cf4ca10", "id": "CVE-2025-5115", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-5115 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-unixsocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-unixsocket@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0ece9718-4ae4-54b9-9e39-4ec5cc66217b", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-unixsocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-unixsocket@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:be80963b-a2d7-5f01-b0f8-d79c02e4b634", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-unixsocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-unixsocket@9.4.48.v20220622-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9b940d4f-0303-59ce-bf1c-3d2f4206659b", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 9.4.48.v20220622-tuxcare.1 of org.eclipse.jetty:jetty-unixsocket." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-unixsocket@9.4.48.v20220622-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/jetty-unixsocket@9.4.48.v20220622-tuxcare.1" } ] }