{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:1899879e-4316-5df5-a135-38492ad05e89", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.5", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-coyote-ffm", "version": "9.0.100-tuxcare.5", "purl": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.5" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:9ede7528-061f-5e06-9278-17a24e80b7e5", "id": "CVE-2020-11996", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11996 affects version 9.0.100-tuxcare.5 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:076fce8e-37a0-5a86-864d-31e687effdd1", "id": "CVE-2020-13934", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13934 affects version 9.0.100-tuxcare.5 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:7179e59e-9d4a-5c3a-8789-8eacb13b7b4f", "id": "CVE-2020-13943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13943 affects version 9.0.100-tuxcare.5 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:d3cc978c-c78c-5524-964c-291469629260", "id": "CVE-2020-9484", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-9484 affects version 9.0.100-tuxcare.5 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:cb4eaf17-9351-58b9-a18f-da16e04662f6", "id": "CVE-2021-24122", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-24122 affects version 9.0.100-tuxcare.5 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:48f1b45c-f096-5223-a09c-0b0384a1dc91", "id": "CVE-2021-42340", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-42340 affects version 9.0.100-tuxcare.5 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:497defa5-910d-5389-b670-9809d08f2433", "id": "CVE-2022-34305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-34305 affects version 9.0.100-tuxcare.5 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:c60f887b-f514-5b23-b704-7b9e697c9d27", "id": "CVE-2022-45143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-45143 affects version 9.0.100-tuxcare.5 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:f155f0eb-9226-5ba4-870e-f89962dfafd3", "id": "CVE-2024-23672", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23672 affects version 9.0.100-tuxcare.5 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:fb68521b-f0c7-5bfa-8d22-341c9d2b81dd", "id": "CVE-2024-24549", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-24549 affects version 9.0.100-tuxcare.5 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:47f19823-6ec8-5677-b023-78c24da3b77b", "id": "CVE-2024-52316", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-52316 affects version 9.0.100-tuxcare.5 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:79ec9d5a-8f46-50f5-8302-83a523a8696c", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 9.0.100-tuxcare.5 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:36ba700c-317b-5705-b930-bbe5a6546041", "id": "CVE-2025-31651", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31651 is fixed in version 9.0.100-tuxcare.5 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:2f977d5d-72d9-5b42-90b9-a62b14d41579", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 9.0.100-tuxcare.5 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:db136a01-e0e8-5cc1-a58d-d3769413b7e4", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 9.0.100-tuxcare.5 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:d90976b5-0770-5a11-8287-7d5470aa1755", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 9.0.100-tuxcare.5 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:e7607f4e-715b-506f-91d3-f55fe04e900a", "id": "CVE-2025-49124", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49124 is fixed in version 9.0.100-tuxcare.5 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:e27c3581-f363-54bb-8f52-a245b6dda4d7", "id": "CVE-2025-49125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49125 is fixed in version 9.0.100-tuxcare.5 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:f69969af-9d11-5a79-9b15-31d3d629b1e6", "id": "CVE-2025-52434", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52434 is fixed in version 9.0.100-tuxcare.5 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:99afb214-c3af-5764-be77-fd4dae020b4c", "id": "CVE-2025-52520", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52520 is fixed in version 9.0.100-tuxcare.5 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:b11052a5-ffc5-5048-a20e-24b1b16c25d3", "id": "CVE-2025-53506", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-53506 is fixed in version 9.0.100-tuxcare.5 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:687c81d5-a036-54bd-8ea8-69822aa2b510", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 9.0.100-tuxcare.5 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:5e442e98-a888-5ee6-a886-bbaaf061d8b8", "id": "CVE-2025-55752", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55752 is fixed in version 9.0.100-tuxcare.5 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:3d19c1f5-04de-505d-ade9-71f477385a6f", "id": "CVE-2025-55754", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55754 is fixed in version 9.0.100-tuxcare.5 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:ab67b378-281b-52fb-9558-b002b254384f", "id": "CVE-2025-61795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61795 is fixed in version 9.0.100-tuxcare.5 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:bd657a24-4259-589e-bf58-a998e792437d", "id": "CVE-2025-66614", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66614 affects version 9.0.100-tuxcare.5 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:dc8728da-7db0-5f5a-9075-873e037029f8", "id": "CVE-2026-24733", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-24733 is fixed in version 9.0.100-tuxcare.5 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:71f95801-1f05-5922-9637-0c0a2e9ef765", "id": "CVE-2026-24734", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24734 affects version 9.0.100-tuxcare.5 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:84eec693-d01e-5650-b8b3-7c7c002edc1b", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 9.0.100-tuxcare.5 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:2f5fdf3e-6bd8-5324-8c76-dc83da04ed8a", "id": "CVE-2026-25854", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-25854 is fixed in version 9.0.100-tuxcare.5 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:1fdd5398-ed0d-5164-8400-eb0c22436f44", "id": "CVE-2026-29145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29145 affects version 9.0.100-tuxcare.5 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:b21c0cb0-ca24-5d39-ba70-1c4d8a4f9750", "id": "CVE-2026-29146", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-29146 is fixed in version 9.0.100-tuxcare.5 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:f9b9ea31-6a1c-5911-bd8f-566f7cae434e", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 9.0.100-tuxcare.5 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:8318429b-d8d8-5787-8594-27cfecf3de06", "id": "CVE-2026-34483", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-34483 is fixed in version 9.0.100-tuxcare.5 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:366ad24c-6724-58f1-a739-1e482ea6193f", "id": "CVE-2026-34486", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34486 affects version 9.0.100-tuxcare.5 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:024cc333-df10-590d-bc6b-c67a1c4027e9", "id": "CVE-2026-34487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34487 affects version 9.0.100-tuxcare.5 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:922bf025-ea5f-548b-9158-845905aa10d8", "id": "CVE-2026-34500", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34500 affects version 9.0.100-tuxcare.5 of org.apache.tomcat:tomcat-coyote-ffm." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.5" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote-ffm@9.0.100-tuxcare.5" } ] }