{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:00b7da2c-120f-585b-8a88-700a9fd3602c", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-coyote@10.1.18-tuxcare.4", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-coyote", "version": "10.1.18-tuxcare.4", "purl": "pkg:maven/org.apache.tomcat/tomcat-coyote@10.1.18-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:b55430de-8afc-5c65-91a5-d6ca9bf04018", "id": "CVE-2024-23672", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-23672 is fixed in version 10.1.18-tuxcare.4 of org.apache.tomcat:tomcat-coyote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote@10.1.18-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b55bfa05-1ffa-585a-96e7-1bc4b05cdb98", "id": "CVE-2024-24549", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-24549 is fixed in version 10.1.18-tuxcare.4 of org.apache.tomcat:tomcat-coyote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote@10.1.18-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:69c06441-5ed8-59a7-b196-335b9ff9314a", "id": "CVE-2024-34750", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-34750 is fixed in version 10.1.18-tuxcare.4 of org.apache.tomcat:tomcat-coyote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote@10.1.18-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:746fbb93-9919-5164-b552-6e5fd8dcc770", "id": "CVE-2024-38286", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38286 is fixed in version 10.1.18-tuxcare.4 of org.apache.tomcat:tomcat-coyote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote@10.1.18-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b295e28a-123b-5671-a2c8-9fe4809048d4", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 10.1.18-tuxcare.4 of org.apache.tomcat:tomcat-coyote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote@10.1.18-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f110eeed-cba1-5455-9d96-8eab436fb309", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 10.1.18-tuxcare.4 of org.apache.tomcat:tomcat-coyote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote@10.1.18-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b7cc5eb6-cf64-5296-9412-46b2f1bc2a42", "id": "CVE-2024-54677", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-54677 is fixed in version 10.1.18-tuxcare.4 of org.apache.tomcat:tomcat-coyote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote@10.1.18-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d3147895-056a-5624-a012-5b15e865cc88", "id": "CVE-2024-56337", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-56337 is fixed in version 10.1.18-tuxcare.4 of org.apache.tomcat:tomcat-coyote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote@10.1.18-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:77fc4e81-4efb-54fa-8f10-2e8a7adb566c", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 10.1.18-tuxcare.4 of org.apache.tomcat:tomcat-coyote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote@10.1.18-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:961330dd-a920-5ac2-995e-312783791b16", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 10.1.18-tuxcare.4 of org.apache.tomcat:tomcat-coyote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote@10.1.18-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a595ddc6-0513-520f-96c1-1b226119990b", "id": "CVE-2025-31651", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31651 is fixed in version 10.1.18-tuxcare.4 of org.apache.tomcat:tomcat-coyote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote@10.1.18-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:1ba8eb85-9be2-5550-958f-4f5dafdb7ad4", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 10.1.18-tuxcare.4 of org.apache.tomcat:tomcat-coyote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote@10.1.18-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d9890605-a63c-58fd-afa4-185b9eedad29", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 10.1.18-tuxcare.4 of org.apache.tomcat:tomcat-coyote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote@10.1.18-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:9f77a701-1c57-518e-a7cc-323b54d57e15", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 10.1.18-tuxcare.4 of org.apache.tomcat:tomcat-coyote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote@10.1.18-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:1115cf28-6126-5d09-a4a6-ae7f5c371588", "id": "CVE-2025-49124", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49124 is fixed in version 10.1.18-tuxcare.4 of org.apache.tomcat:tomcat-coyote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote@10.1.18-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:62e9696d-10cc-5739-9f1b-8933adbb40ac", "id": "CVE-2025-49125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49125 is fixed in version 10.1.18-tuxcare.4 of org.apache.tomcat:tomcat-coyote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote@10.1.18-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:eb7c93fe-a45d-5b91-9372-290ad4d945ed", "id": "CVE-2025-52520", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52520 is fixed in version 10.1.18-tuxcare.4 of org.apache.tomcat:tomcat-coyote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote@10.1.18-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:008f312f-1763-5998-a0f4-b17a503a5529", "id": "CVE-2025-53506", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-53506 is fixed in version 10.1.18-tuxcare.4 of org.apache.tomcat:tomcat-coyote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote@10.1.18-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b51ccb8c-9cf3-5e0d-b5d8-03dcf6665898", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 10.1.18-tuxcare.4 of org.apache.tomcat:tomcat-coyote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote@10.1.18-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3b1d33c9-2b4f-50fb-a91a-ba1c7181390d", "id": "CVE-2025-55752", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55752 is fixed in version 10.1.18-tuxcare.4 of org.apache.tomcat:tomcat-coyote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote@10.1.18-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ca3c7455-a3d5-55b6-b944-9da9c3573d65", "id": "CVE-2025-55754", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55754 is fixed in version 10.1.18-tuxcare.4 of org.apache.tomcat:tomcat-coyote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote@10.1.18-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b265e11f-95ad-58dd-8bce-93909c2cfe52", "id": "CVE-2025-61795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61795 is fixed in version 10.1.18-tuxcare.4 of org.apache.tomcat:tomcat-coyote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote@10.1.18-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:5e89eded-7432-5534-b4b0-8cb3682f48b8", "id": "CVE-2025-66614", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66614 affects version 10.1.18-tuxcare.4 of org.apache.tomcat:tomcat-coyote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote@10.1.18-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:10add0cb-9b3f-5599-ad7c-d98fe7d0e4af", "id": "CVE-2026-24733", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-24733 is fixed in version 10.1.18-tuxcare.4 of org.apache.tomcat:tomcat-coyote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote@10.1.18-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:07e9fae1-da4e-5a35-8bdc-421e34b03c31", "id": "CVE-2026-24734", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24734 affects version 10.1.18-tuxcare.4 of org.apache.tomcat:tomcat-coyote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote@10.1.18-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:de6e1a9d-6457-5b30-8047-4fbb6c4ae448", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 10.1.18-tuxcare.4 of org.apache.tomcat:tomcat-coyote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote@10.1.18-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:fa131cc9-8846-5014-9b7b-2979067e5252", "id": "CVE-2026-25854", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-25854 is fixed in version 10.1.18-tuxcare.4 of org.apache.tomcat:tomcat-coyote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote@10.1.18-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:26fe031e-ac26-5539-a432-1e92d4b0a2a2", "id": "CVE-2026-29145", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-29145 is fixed in version 10.1.18-tuxcare.4 of org.apache.tomcat:tomcat-coyote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote@10.1.18-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:5418482b-4d81-5abd-8417-ac591a466b25", "id": "CVE-2026-29146", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-29146 is fixed in version 10.1.18-tuxcare.4 of org.apache.tomcat:tomcat-coyote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote@10.1.18-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:77eec4d4-3a45-5d90-a269-2a5909a3e1a5", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 10.1.18-tuxcare.4 of org.apache.tomcat:tomcat-coyote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote@10.1.18-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d0893c41-ed6a-5c73-a6e0-a82d6ad908ba", "id": "CVE-2026-34483", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-34483 is fixed in version 10.1.18-tuxcare.4 of org.apache.tomcat:tomcat-coyote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote@10.1.18-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:bdac347e-8090-5e8c-aff3-6a2c23b94c4d", "id": "CVE-2026-34486", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34486 affects version 10.1.18-tuxcare.4 of org.apache.tomcat:tomcat-coyote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote@10.1.18-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3db23259-0c52-5477-af08-20e4a68532dc", "id": "CVE-2026-34487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34487 affects version 10.1.18-tuxcare.4 of org.apache.tomcat:tomcat-coyote." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote@10.1.18-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-coyote@10.1.18-tuxcare.4" } ] }