{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:ad28f1ac-7f74-5ba3-a718-a49bca438618", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.8", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-jaspic-api", "version": "8.5.100-tuxcare.8", "purl": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.8" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:78e55e9e-64ec-54ac-93f7-67e346c50108", "id": "CVE-2016-0762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0762 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:626f1648-860b-5b64-8352-c644f7a64e57", "id": "CVE-2016-0763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0763 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:b0cd5ab3-30cd-5a0e-be05-3d716e821c44", "id": "CVE-2016-5018", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5018 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:397e04dd-767d-562b-a44d-cce2fd63ccd4", "id": "CVE-2016-6794", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6794 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:356836df-a4d9-5dc7-b567-c3c0d1a51e9f", "id": "CVE-2016-6796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6796 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:4d7ecdd8-7ae8-5d7d-8563-cc921e4dd7ee", "id": "CVE-2016-6797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6797 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:f52e3e47-6862-5064-8f56-4ba732b47837", "id": "CVE-2016-6816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6816 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:85f2b0cd-02d2-599a-8a3c-303151055a32", "id": "CVE-2016-6817", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6817 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:90c77f6e-8afa-5f68-adc4-9dbdbfc6c4e9", "id": "CVE-2016-8745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8745 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:2070c179-a1df-527c-b056-e1747cf0bc91", "id": "CVE-2016-8747", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8747 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:8f51f67b-004b-5ebe-be1c-f895a016136b", "id": "CVE-2017-12617", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-12617 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:2466e49b-8f9f-5471-8841-a32d9862fee1", "id": "CVE-2017-5647", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5647 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:7c3817af-2f8f-58dc-aa71-e870d032bfca", "id": "CVE-2017-5648", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5648 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:9ff1382b-5173-557d-9b49-5d4bca58643f", "id": "CVE-2017-5650", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5650 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:1dca285e-be1a-54ea-b9bf-08ede4de4b11", "id": "CVE-2017-5651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5651 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:7f374736-e8b4-5e60-9434-3f6e50dfadb6", "id": "CVE-2017-5664", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5664 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:f18d94f4-4b8d-5c38-9c30-eef0dd4bd018", "id": "CVE-2017-7674", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7674 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:8fe7eaa4-6715-5f4e-829e-d925528bdf28", "id": "CVE-2017-7675", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7675 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:be7c087e-c0e7-5ace-9018-384ad9333437", "id": "CVE-2018-1304", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1304 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:e168d9fe-ceb0-5994-81ac-d2d22d5298f9", "id": "CVE-2018-1305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1305 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:9e041672-a8ac-5937-99de-be1c32e676dc", "id": "CVE-2018-1336", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1336 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:89041f10-785c-53f7-a767-6eefc25af2eb", "id": "CVE-2018-8014", "analysis": { "state": "not_affected", "detail": "Vulnerability CVE-2018-8014 does not affect version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jaspic-api. Tomcat Version 8.5.100 is not vulnerable to CVE-2018-8014. Confirmed by manual code inspection and security advisories." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:89adc8fb-b2a8-5d93-9266-95fdafa8d66d", "id": "CVE-2018-8034", "analysis": { "state": "not_affected", "detail": "Vulnerability CVE-2018-8034 does not affect version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jaspic-api. Tomcat Version 8.5.100 is not vulnerable to CVE-2018-8034. Confirmed by manual code inspection and security advisories." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:d3e02457-de81-5794-8284-dc3ba32f8ca8", "id": "CVE-2020-11996", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11996 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:120f8782-4118-5461-a492-f2024f8fcbf3", "id": "CVE-2020-13934", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13934 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:c99812af-de84-5a63-948c-22a537242072", "id": "CVE-2020-13943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13943 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:4d55b4e3-abc8-517f-9cea-90806a8e72a4", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.tomcat:tomcat-jaspic-api 8.5.100-tuxcare.8." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:c7cffee5-a3db-5eca-8a6b-20d8a76cc174", "id": "CVE-2020-9484", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-9484 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:0372b370-4ef2-5e63-80c7-5c1d4a1bf363", "id": "CVE-2021-24122", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-24122 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:1ec04026-bf2c-5d4f-97aa-1eca1fa02000", "id": "CVE-2021-42340", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-42340 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:8d70cdce-bfa8-55a0-b961-08923a602cee", "id": "CVE-2022-34305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-34305 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:136f5b16-80d2-5f71-acd7-38edcb13b251", "id": "CVE-2022-45143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-45143 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:abc633d2-3e28-57e2-9b5c-84f158a1b81d", "id": "CVE-2024-23672", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23672 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:46422e14-dea6-591a-994a-21d6306d6c20", "id": "CVE-2024-24549", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-24549 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:ce7b40f3-b739-5ad4-8d36-eb7012496a77", "id": "CVE-2024-34750", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-34750 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:86d5376f-a8ba-5b17-b6e0-9747c41fa03b", "id": "CVE-2024-38286", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38286 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:88c35b0b-4f59-580e-9b27-0eee7663f624", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:6a70a178-e364-5f16-af9c-898e8bb0cb2c", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:1ed8c3eb-6f5e-580a-83c0-33b509fdc998", "id": "CVE-2024-52317", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52317 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:72195b44-a677-5c07-9eba-2e8ca65dc827", "id": "CVE-2024-54677", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-54677 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:f9c44066-dbd1-5e32-b532-c71e45d44280", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:7dc76298-5a2b-5a2f-9111-b08fc7a18cb0", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:fae483fe-a117-57a2-9494-22c800ccfcf1", "id": "CVE-2025-31651", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31651 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:4de24a8e-c21e-5974-be73-8a0e9c3a2776", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:b0c67738-def4-598a-8269-6326ef5862b8", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:0c68b82d-e451-5d06-9dd4-a4cbae919676", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:0daef383-dfe4-536c-9544-d2f5ea102529", "id": "CVE-2025-49125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49125 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:bbd71500-b0a0-572c-b872-6004b0f7a3d7", "id": "CVE-2025-52434", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52434 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:36e2d2d8-c3e8-5678-abff-3a913105a830", "id": "CVE-2025-52520", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52520 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:d71545ca-67c4-5e88-b98c-f0d5d64d1176", "id": "CVE-2025-53506", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-53506 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:11e97d9d-a82d-51d1-8c1c-80475d5cabe5", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:1a9cefc7-38ed-548e-947f-538cb2af49cf", "id": "CVE-2025-55752", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55752 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:f4228a61-4db8-598a-a57f-9a515881abe5", "id": "CVE-2025-55754", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55754 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:a9808fc0-fc55-5f33-aaaf-c6bc3674ad5d", "id": "CVE-2025-61795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61795 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:0443e693-7cb6-52a7-ae21-29225271b808", "id": "CVE-2025-66614", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66614 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:f26c1a0b-6156-5b89-899b-cc6718831ed7", "id": "CVE-2026-24733", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-24733 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:a2b1f956-34e6-52c0-b8b7-2be92cc9a4af", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:7bc74f6d-bff7-5124-a6be-fb198f12b52b", "id": "CVE-2026-25854", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25854 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:05ee48f7-9cb2-5158-9e23-3d76f11b80e5", "id": "CVE-2026-29146", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29146 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:59223753-f307-52c2-81e1-dc0941a94f47", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:588f3689-b002-5926-8357-903a50f27b2a", "id": "CVE-2026-34486", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34486 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-jaspic-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.8" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-jaspic-api@8.5.100-tuxcare.8" } ] }