{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:33ad654f-02f1-56d0-b96f-94108d075886", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.eclipse.jetty/infinispan-parent@9.4.53.v20231009-tuxcare.5", "type": "library", "group": "org.eclipse.jetty", "name": "infinispan-parent", "version": "9.4.53.v20231009-tuxcare.5", "purl": "pkg:maven/org.eclipse.jetty/infinispan-parent@9.4.53.v20231009-tuxcare.5" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:7df43fb0-c756-5dcf-9563-bb88617f19ce", "id": "CVE-2020-25711", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-25711 affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty:infinispan-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-parent@9.4.53.v20231009-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:61d3876d-2d52-5505-abcd-6f6c81f524a7", "id": "CVE-2020-27216", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-27216 affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty:infinispan-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-parent@9.4.53.v20231009-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:e8daaffe-6510-5ec3-ab03-228c58f0d5c8", "id": "CVE-2021-28169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-28169 affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty:infinispan-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-parent@9.4.53.v20231009-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:731d6748-a6de-5c3e-a80d-736f28d9fb28", "id": "CVE-2021-34428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-34428 affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty:infinispan-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-parent@9.4.53.v20231009-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:37904a69-5b28-5c48-b05b-af8b2310a9c1", "id": "CVE-2023-36478", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36478 affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty:infinispan-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-parent@9.4.53.v20231009-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:d3a066ab-280c-5198-bab4-35501a5c8835", "id": "CVE-2023-36479", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-36479 affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty:infinispan-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-parent@9.4.53.v20231009-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:5ad34eb5-9450-5419-9fc8-ab547ba3a9ab", "id": "CVE-2023-40167", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-40167 affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty:infinispan-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-parent@9.4.53.v20231009-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:666b062b-be23-58a1-bef5-5f952c976258", "id": "CVE-2023-41900", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-41900 affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty:infinispan-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-parent@9.4.53.v20231009-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:468233e3-f946-541d-9ac5-0ffb3bf671b5", "id": "CVE-2024-13009", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-13009 is fixed in version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty:infinispan-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-parent@9.4.53.v20231009-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:0409c6e3-4a39-5921-8958-dfb721d705c7", "id": "CVE-2024-22201", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22201 is fixed in version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty:infinispan-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-parent@9.4.53.v20231009-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:649156d4-df0e-510f-9d02-471700830d92", "id": "CVE-2024-6762", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-6762 is fixed in version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty:infinispan-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-parent@9.4.53.v20231009-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:c316d9e9-0007-5d5c-8efd-f62023a4fbac", "id": "CVE-2024-6763", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-6763 is fixed in version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty:infinispan-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-parent@9.4.53.v20231009-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:d35180e3-2171-51f5-afac-ee56ab2e17b3", "id": "CVE-2024-9823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-9823 is fixed in version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty:infinispan-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-parent@9.4.53.v20231009-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:58a73c4e-cda9-5fa6-9e7a-a2dbd8c255d6", "id": "CVE-2025-11143", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-11143 is fixed in version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty:infinispan-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-parent@9.4.53.v20231009-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:08e1433d-6849-597a-8309-4cc410e35e33", "id": "CVE-2025-1948", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-1948 affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty:infinispan-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-parent@9.4.53.v20231009-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:4ae2c1bc-baa1-5144-8b9e-5d890f03f83d", "id": "CVE-2025-5115", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-5115 affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty:infinispan-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-parent@9.4.53.v20231009-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:efd40902-615f-5be8-ab08-c63229dd9b6c", "id": "CVE-2026-1605", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-1605 affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty:infinispan-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-parent@9.4.53.v20231009-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:4c478ed0-615b-5df6-af4a-929be275ebcc", "id": "CVE-2026-2332", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2332 affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty:infinispan-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-parent@9.4.53.v20231009-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:1628b0ad-97e7-5871-a2f8-e336b7ffc435", "id": "CVE-2026-5795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-5795 affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty:infinispan-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-parent@9.4.53.v20231009-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:705b1684-37dd-5d12-b72c-c693afc65797", "id": "GHSA-58qw-p7qm-5rvh", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-58qw-p7qm-5rvh affects version 9.4.53.v20231009-tuxcare.5 of org.eclipse.jetty:infinispan-parent." }, "affects": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-parent@9.4.53.v20231009-tuxcare.5" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.eclipse.jetty/infinispan-parent@9.4.53.v20231009-tuxcare.5" } ] }