{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:e80de8f7-eae4-55b4-af2f-553a1aae8711", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.8", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-jasper-el", "version": "8.5.100-tuxcare.8", "purl": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.8" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:f1097ad1-0204-5c6f-bba6-66d8fd15e17d", "id": "CVE-2016-0762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0762 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:49371742-4d7f-52bc-a1d6-41951a187b91", "id": "CVE-2016-0763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0763 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:d5016708-a9c1-5ec0-8aca-099cc812db3f", "id": "CVE-2016-5018", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5018 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:b33ecdf3-3522-5209-80ba-e0667c489d34", "id": "CVE-2016-6794", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6794 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:6e156956-dfee-5f82-b679-999c0073c7b8", "id": "CVE-2016-6796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6796 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:a1070581-0862-5e12-b3f7-d144ce5e873b", "id": "CVE-2016-6797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6797 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:45fb9c66-aa6e-5e33-9127-6ef842b7d293", "id": "CVE-2016-6816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6816 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:fa03d1b0-8b22-525d-8163-8f55e62364e9", "id": "CVE-2016-6817", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6817 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:7d6a337e-fe22-5589-aeb6-969ab023b549", "id": "CVE-2016-8745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8745 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:baf3bdd0-da14-50be-b067-2206a7d31b1a", "id": "CVE-2016-8747", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8747 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:037a8a79-50ec-5068-b2ee-abb029a06b60", "id": "CVE-2017-12617", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-12617 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:5d3e46c6-7058-5704-a223-35c11bffba0e", "id": "CVE-2017-5647", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5647 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:a62273bd-bca4-5afc-9b26-3b074f61e039", "id": "CVE-2017-5648", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5648 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:be8eb2e8-dfc4-5212-95e6-41596c8dfb28", "id": "CVE-2017-5650", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5650 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:be1fac89-7826-5cb5-8a5f-06edb8e097fe", "id": "CVE-2017-5651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5651 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:b18649d5-a1b1-5edc-ad47-fcdad7eef22f", "id": "CVE-2017-5664", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5664 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:44512d4c-ac00-549c-8ec9-a467f2f294ae", "id": "CVE-2017-7674", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7674 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:71fa4934-16ba-5434-b644-b33692e3d609", "id": "CVE-2017-7675", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7675 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:2f3bda8f-132d-5b26-832a-008ab8724fbc", "id": "CVE-2018-1304", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1304 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:9226cba0-34fa-53fd-8d54-5427a53bca36", "id": "CVE-2018-1305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1305 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:057db555-5588-5f67-905f-d742ff5e37e1", "id": "CVE-2018-1336", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1336 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:9b3c66c2-baad-5d5b-9992-8df8505009f7", "id": "CVE-2018-8014", "analysis": { "state": "not_affected", "detail": "Vulnerability CVE-2018-8014 does not affect version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jasper-el. Tomcat Version 8.5.100 is not vulnerable to CVE-2018-8014. Confirmed by manual code inspection and security advisories." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:d0ddfcc8-0bb7-5c93-869f-de40076faca8", "id": "CVE-2018-8034", "analysis": { "state": "not_affected", "detail": "Vulnerability CVE-2018-8034 does not affect version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jasper-el. Tomcat Version 8.5.100 is not vulnerable to CVE-2018-8034. Confirmed by manual code inspection and security advisories." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:d8f705a6-0b63-577d-8384-de04139accaa", "id": "CVE-2020-11996", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11996 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:13ae60eb-95a3-5063-b859-c4e41a822223", "id": "CVE-2020-13934", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13934 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:e48b7f40-9e32-580b-904a-789e46e3b47e", "id": "CVE-2020-13943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13943 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:370629f8-0ac4-5d5d-8fc7-a837cdab7846", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.tomcat:tomcat-jasper-el 8.5.100-tuxcare.8." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:54698ff1-da7c-51d5-a5ba-9dfd9d2acdba", "id": "CVE-2020-9484", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-9484 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:a976ec2d-5847-57c0-8811-146cec3f5378", "id": "CVE-2021-24122", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-24122 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:7ffc42e9-1be4-5a37-9f7e-b9d04bd8b134", "id": "CVE-2021-42340", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-42340 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:ef9b811a-3630-5449-8ccb-da761be22476", "id": "CVE-2022-34305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-34305 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:cf9c7ed2-777f-5449-bf48-df3dbb050fe5", "id": "CVE-2022-45143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-45143 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:8130d52f-7aa4-58a5-9c4b-429272804084", "id": "CVE-2024-23672", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23672 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:cca42dcd-4437-50ae-b8d1-f0fa23054b1c", "id": "CVE-2024-24549", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-24549 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:e0b549f0-356a-5943-bfc8-21042b29a550", "id": "CVE-2024-34750", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-34750 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:1d0d73a2-47c4-5345-8177-4c18777da7d0", "id": "CVE-2024-38286", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38286 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:7324ebe8-219b-58b6-a216-7873db9b0767", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:30bfce12-d99b-5000-9500-d2491545a5d2", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:3ce15586-2979-52d6-9082-79bed647eb96", "id": "CVE-2024-52317", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52317 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:ede78561-1307-5419-b570-154b612400d8", "id": "CVE-2024-54677", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-54677 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:30477345-7a38-5903-99c9-8405bca67151", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:e138aaf0-4ddd-58c3-b0a8-7ce6cdbc31f1", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:0ab7d04c-10dc-513a-9ab5-18e70dea5187", "id": "CVE-2025-31651", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31651 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:e0971082-a066-5b52-95fb-77acb4dd64cc", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:051ed157-30e3-5701-913d-9d81242a2468", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:204ca12b-9d67-5855-a07e-2ab4d0a2ce72", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:fc58589b-518f-540d-b966-d9a712bdc671", "id": "CVE-2025-49125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49125 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:b9c2a62e-e07c-54ab-a307-7ca8b4baeede", "id": "CVE-2025-52434", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52434 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:545e26a0-bd34-51d5-8249-4665460e78ee", "id": "CVE-2025-52520", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52520 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:6f9ee118-0ac2-5743-a86c-71b00e3e7d08", "id": "CVE-2025-53506", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-53506 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:1ed3f71a-ff34-5995-882d-b4a252928b97", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:b5abdd8a-a7e3-576b-ab4c-93df061b4dcc", "id": "CVE-2025-55752", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55752 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:b1312435-3ec3-594b-b0ed-6f63929b1574", "id": "CVE-2025-55754", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55754 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:a90b1abc-45de-50f7-8e95-bc52341b29dc", "id": "CVE-2025-61795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61795 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:570c44ef-5fcc-5b61-8f7f-567e87d0e67d", "id": "CVE-2025-66614", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66614 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:f4bfb538-d7b9-5562-af82-ea70ce8b3380", "id": "CVE-2026-24733", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-24733 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:9341d9c2-7973-5537-b35a-488c50cfd388", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:427f4792-c9a2-537b-9990-b2aa82ac831a", "id": "CVE-2026-25854", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25854 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:e9196e96-c840-57fa-88be-7baf2b71c741", "id": "CVE-2026-29146", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29146 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:c7394e2b-9c5f-50d4-be38-510da6e9c22c", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:42a8c996-b81b-546b-af26-79bb817769a8", "id": "CVE-2026-34486", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34486 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jasper-el." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.8" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jasper-el@8.5.100-tuxcare.8" } ] }