{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:1606b7b4-b6c2-5909-a7b6-e37b0524ec03", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.8", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-dbcp", "version": "8.5.100-tuxcare.8", "purl": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.8" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:bcb0dcfd-7ed6-59b2-a18d-96e09b94bef0", "id": "CVE-2016-0762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0762 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:5b71b7f9-3611-5832-8df0-a40614b61408", "id": "CVE-2016-0763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0763 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:6ed1672b-cb96-5c0f-bf29-3405a24d56eb", "id": "CVE-2016-5018", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5018 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:a10970af-4c39-5784-a7bd-fc514ea5c33d", "id": "CVE-2016-6794", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6794 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:04dd16e4-00b3-5dc1-b867-ad4dea71b6a5", "id": "CVE-2016-6796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6796 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:159bc25e-eafe-5148-be7f-e0e1ed5bb3c5", "id": "CVE-2016-6797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6797 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:34f3e8ae-035f-5886-bdb3-62a62ac4dfa1", "id": "CVE-2016-6816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6816 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:b551ac4f-d6f6-5b13-bfad-dcce05e8621e", "id": "CVE-2016-6817", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6817 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:468ae621-6af2-591a-a166-1b5412626515", "id": "CVE-2016-8745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8745 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:4229f664-c69d-55d0-967f-01181c6047ad", "id": "CVE-2016-8747", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8747 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:b24bbd6e-029a-5a15-b790-cd4ff572db7a", "id": "CVE-2017-12617", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-12617 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:214466c2-c759-5c16-89fe-876320294d73", "id": "CVE-2017-5647", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5647 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:b63287c4-2de6-54bc-9a0e-2c44f1010a32", "id": "CVE-2017-5648", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5648 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:b03170f9-3447-59d1-804e-41acb99fd227", "id": "CVE-2017-5650", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5650 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:506b09eb-2b6a-5188-9604-90ecc6019ed1", "id": "CVE-2017-5651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5651 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:bbb480dc-d027-5d36-8c8c-54677217d349", "id": "CVE-2017-5664", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5664 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:92b490d3-b042-55c1-9143-b93e46950345", "id": "CVE-2017-7674", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7674 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:032b1abb-7865-50de-a702-1285b805718c", "id": "CVE-2017-7675", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7675 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:7ea259be-0181-580c-9c6c-878ddb3e1998", "id": "CVE-2018-1304", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1304 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:57500b69-e770-5fe9-a8e3-53db13207e0b", "id": "CVE-2018-1305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1305 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:3de863c7-922a-5f86-8aa6-cb0793a7b19d", "id": "CVE-2018-1336", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1336 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:3a38e047-e3da-5ad2-b112-5917e897277d", "id": "CVE-2018-8014", "analysis": { "state": "not_affected", "detail": "Vulnerability CVE-2018-8014 does not affect version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-dbcp. Tomcat Version 8.5.100 is not vulnerable to CVE-2018-8014. Confirmed by manual code inspection and security advisories." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:94990a91-b4de-554d-9ba0-27f42793c255", "id": "CVE-2018-8034", "analysis": { "state": "not_affected", "detail": "Vulnerability CVE-2018-8034 does not affect version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-dbcp. Tomcat Version 8.5.100 is not vulnerable to CVE-2018-8034. Confirmed by manual code inspection and security advisories." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:913ea416-6c04-52fd-94a5-0cd392b0fd96", "id": "CVE-2020-11996", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11996 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:2e1bfaee-2584-526c-bc6f-3d2621021240", "id": "CVE-2020-13934", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13934 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:4862657f-5536-5674-b698-9297a6f399a4", "id": "CVE-2020-13943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13943 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:5036885f-329e-5a80-a81c-2b57530a6a7e", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.tomcat:tomcat-dbcp 8.5.100-tuxcare.8." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:7b091f45-6c6f-5b54-815d-22c63689fbcd", "id": "CVE-2020-9484", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-9484 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:a522573d-ff21-5510-b746-2bd9b9f8bc3a", "id": "CVE-2021-24122", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-24122 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:906def57-c2ab-5cfb-8791-1fa069bf08ce", "id": "CVE-2021-42340", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-42340 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:7ea0eb0c-ce8d-5b18-9894-91e3cd6ea898", "id": "CVE-2022-34305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-34305 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:2c2dc78f-a492-5078-adbc-d96d2e53dbd1", "id": "CVE-2022-45143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-45143 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:212af65c-331d-54e8-bde9-ba12ddcd0878", "id": "CVE-2024-23672", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23672 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:cf0127b1-8b82-5f1e-8844-8014d1dac0d5", "id": "CVE-2024-24549", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-24549 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:aed1e9a9-3cb5-5a25-a1df-ec2470b86c83", "id": "CVE-2024-34750", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-34750 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:e2da95e0-458c-5c87-9ce6-8a5649534852", "id": "CVE-2024-38286", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38286 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:ef0f3426-3ca7-5481-bce8-aa95bbec5e95", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:9ea2fc44-2992-5852-be60-2378f7bf51ca", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:32027be4-97a4-5de3-bfb5-5c36a25bb871", "id": "CVE-2024-52317", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52317 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:282e7f92-aa76-58ef-b8e0-2d92351c61be", "id": "CVE-2024-54677", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-54677 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:6a01f638-658b-5e31-8b57-63a74fd5b140", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:44e0f1ea-6b97-53cd-8637-50cb92368b47", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:769d4bdc-ef7e-5b3b-8ce3-f68c77f7d71d", "id": "CVE-2025-31651", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31651 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:20bfa2b3-25c0-561c-aba1-efd6050c3588", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:87a4066b-b1e5-5859-b7d9-41253e51221c", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:a69dd34e-2290-5d54-8419-7c044b2b6f6e", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:4144aeaa-01c4-5388-ba06-dc0b20418af6", "id": "CVE-2025-49125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49125 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:e2d82efd-00f2-5510-b21f-fa7312296cbb", "id": "CVE-2025-52434", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52434 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:d5073e2c-6b63-50b9-91cb-bbe03b358fe1", "id": "CVE-2025-52520", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52520 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:f9d4c76c-0f58-5307-a7a3-a3e775a6b8fd", "id": "CVE-2025-53506", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-53506 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:0c1c3d93-676e-5dce-85ca-a88861372cf7", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:5ddd5c27-6244-5960-94bf-d0ed8684d879", "id": "CVE-2025-55752", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55752 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:7561417f-44fe-51a3-994e-f2d504155a2a", "id": "CVE-2025-55754", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55754 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:57575617-7b23-54c3-bd0f-09d98eddb8a7", "id": "CVE-2025-61795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61795 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:e890d20d-7c5d-5963-8372-52276f146c35", "id": "CVE-2025-66614", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66614 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:f91bd962-dbd6-528e-aca1-59cf1a693b72", "id": "CVE-2026-24733", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-24733 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:c822ac68-3ab0-538a-aa13-5feaf9953172", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:63751c3c-9647-5456-a8f4-5cfa86e5618a", "id": "CVE-2026-25854", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25854 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:9aefd583-af0f-54b9-929a-8385037e70aa", "id": "CVE-2026-29146", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29146 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:67fca5e4-c67b-5f89-95a0-62aff1c128d2", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:6116b014-331f-5d07-8a62-8038a4ab7be6", "id": "CVE-2026-34486", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34486 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-dbcp." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.8" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-dbcp@8.5.100-tuxcare.8" } ] }