{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:72e680cc-f00c-584f-befb-3c298821528b", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.4", "type": "library", "group": "org.apache.tomcat.embed", "name": "tomcat-embed-core", "version": "10.1.18-tuxcare.4", "purl": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:bfb06cd5-ef53-5122-ad52-5d3f596ea25c", "id": "CVE-2024-23672", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-23672 is fixed in version 10.1.18-tuxcare.4 of org.apache.tomcat.embed:tomcat-embed-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:dcda38b8-a7c5-5fdf-bdab-f8ba54be9b5c", "id": "CVE-2024-24549", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-24549 is fixed in version 10.1.18-tuxcare.4 of org.apache.tomcat.embed:tomcat-embed-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0fbd4f4e-202a-5020-b457-2660742515ff", "id": "CVE-2024-34750", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-34750 is fixed in version 10.1.18-tuxcare.4 of org.apache.tomcat.embed:tomcat-embed-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8928674d-30a7-5cf0-acd5-afac8fd50a9c", "id": "CVE-2024-38286", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38286 is fixed in version 10.1.18-tuxcare.4 of org.apache.tomcat.embed:tomcat-embed-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:38e2b2f4-a2d5-5555-abeb-6f0f2a4f865c", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 10.1.18-tuxcare.4 of org.apache.tomcat.embed:tomcat-embed-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d760e293-4ae8-5ff0-b35d-d8738433d2b8", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 10.1.18-tuxcare.4 of org.apache.tomcat.embed:tomcat-embed-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7cc1e77e-2868-5820-8ced-a51aa4771de3", "id": "CVE-2024-54677", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-54677 is fixed in version 10.1.18-tuxcare.4 of org.apache.tomcat.embed:tomcat-embed-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8295d039-4a92-5266-9914-5db19b9c05c4", "id": "CVE-2024-56337", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-56337 is fixed in version 10.1.18-tuxcare.4 of org.apache.tomcat.embed:tomcat-embed-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:6a5a25b4-8a62-56c6-b061-27b47dd1959b", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 10.1.18-tuxcare.4 of org.apache.tomcat.embed:tomcat-embed-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0b2ff0bc-f376-5f3e-b5a0-a0f345ccb3d7", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 10.1.18-tuxcare.4 of org.apache.tomcat.embed:tomcat-embed-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ee0e59e6-4bd3-5183-86d7-f1525f97c6fb", "id": "CVE-2025-31651", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31651 is fixed in version 10.1.18-tuxcare.4 of org.apache.tomcat.embed:tomcat-embed-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:01d9fe1f-9f5e-5a66-8b24-f2115be87074", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 10.1.18-tuxcare.4 of org.apache.tomcat.embed:tomcat-embed-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:402604e0-dc0c-564c-b813-fb230e77d6cc", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 10.1.18-tuxcare.4 of org.apache.tomcat.embed:tomcat-embed-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ac6dacbb-9f8b-556a-80a2-290491614e82", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 10.1.18-tuxcare.4 of org.apache.tomcat.embed:tomcat-embed-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:6da8df2d-d0ca-58e1-81de-bd9fecdb6228", "id": "CVE-2025-49124", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49124 is fixed in version 10.1.18-tuxcare.4 of org.apache.tomcat.embed:tomcat-embed-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:58a72190-a204-540e-8359-ebe978879dba", "id": "CVE-2025-49125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49125 is fixed in version 10.1.18-tuxcare.4 of org.apache.tomcat.embed:tomcat-embed-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:295e407e-7470-5c07-abb2-a28350cf8eb4", "id": "CVE-2025-52520", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52520 is fixed in version 10.1.18-tuxcare.4 of org.apache.tomcat.embed:tomcat-embed-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b823022d-2bde-58ae-bab1-51c57bba11dc", "id": "CVE-2025-53506", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-53506 is fixed in version 10.1.18-tuxcare.4 of org.apache.tomcat.embed:tomcat-embed-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b04ea7e0-5c7e-59a9-bf58-c0ac4d25ef94", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 10.1.18-tuxcare.4 of org.apache.tomcat.embed:tomcat-embed-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:477cb874-8d26-58bb-9973-d3703f9c35e4", "id": "CVE-2025-55752", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55752 is fixed in version 10.1.18-tuxcare.4 of org.apache.tomcat.embed:tomcat-embed-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:9223f25f-341f-53a9-80aa-f141a2a27827", "id": "CVE-2025-55754", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55754 is fixed in version 10.1.18-tuxcare.4 of org.apache.tomcat.embed:tomcat-embed-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4be0c780-9594-5b02-8754-86d4c47cc918", "id": "CVE-2025-61795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61795 is fixed in version 10.1.18-tuxcare.4 of org.apache.tomcat.embed:tomcat-embed-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f33703b8-d1d7-508e-9b30-d009df5bb07b", "id": "CVE-2025-66614", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66614 affects version 10.1.18-tuxcare.4 of org.apache.tomcat.embed:tomcat-embed-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0e557204-b1d1-5684-97a4-b640f84d9eee", "id": "CVE-2026-24733", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-24733 is fixed in version 10.1.18-tuxcare.4 of org.apache.tomcat.embed:tomcat-embed-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:47cabe35-9e07-5600-98f4-279d1640a7ad", "id": "CVE-2026-24734", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24734 affects version 10.1.18-tuxcare.4 of org.apache.tomcat.embed:tomcat-embed-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:288eb970-e878-5a54-a5f4-5b497636e3f4", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 10.1.18-tuxcare.4 of org.apache.tomcat.embed:tomcat-embed-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:13a483ac-f7dd-58e4-bb31-8b609d3f47a1", "id": "CVE-2026-25854", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-25854 is fixed in version 10.1.18-tuxcare.4 of org.apache.tomcat.embed:tomcat-embed-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:5a5126c7-1e54-5dd8-aae9-d094bc94067f", "id": "CVE-2026-29145", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-29145 is fixed in version 10.1.18-tuxcare.4 of org.apache.tomcat.embed:tomcat-embed-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:bdbccebf-f392-544b-9602-3fde6f56137c", "id": "CVE-2026-29146", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-29146 is fixed in version 10.1.18-tuxcare.4 of org.apache.tomcat.embed:tomcat-embed-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7728d499-9634-569f-9bb3-22033f52f44a", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 10.1.18-tuxcare.4 of org.apache.tomcat.embed:tomcat-embed-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b6a41467-52a5-53d0-a0ec-4cc7f0090cb6", "id": "CVE-2026-34483", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-34483 is fixed in version 10.1.18-tuxcare.4 of org.apache.tomcat.embed:tomcat-embed-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:36629334-b37f-5711-a658-513c9b188c50", "id": "CVE-2026-34486", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34486 affects version 10.1.18-tuxcare.4 of org.apache.tomcat.embed:tomcat-embed-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d3989bfc-3fad-5992-b4fe-275797b3c836", "id": "CVE-2026-34487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34487 affects version 10.1.18-tuxcare.4 of org.apache.tomcat.embed:tomcat-embed-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.18-tuxcare.4" } ] }