{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:34459b5b-f0b5-50eb-abd4-b510b335659e", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-util-scan@8.5.100-tuxcare.8", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-util-scan", "version": "8.5.100-tuxcare.8", "purl": "pkg:maven/org.apache.tomcat/tomcat-util-scan@8.5.100-tuxcare.8" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:71e23436-9fec-5af4-b410-587121e3e8f7", "id": "CVE-2016-0762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0762 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util-scan." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util-scan@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:f999dc7f-5e0a-55a5-9e9c-948dec0f4437", "id": "CVE-2016-0763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0763 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util-scan." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util-scan@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:4b90129a-3b5d-5f95-b660-53baa94cf11c", "id": "CVE-2016-5018", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5018 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util-scan." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util-scan@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:d9ff7974-20ba-5571-820b-ed0fa6788c75", "id": "CVE-2016-6794", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6794 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util-scan." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util-scan@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:b77987c9-c8aa-5f2d-9f43-1989a3746b72", "id": "CVE-2016-6796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6796 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util-scan." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util-scan@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:03bd9519-bd11-5c01-94e4-07cbfc319b49", "id": "CVE-2016-6797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6797 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util-scan." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util-scan@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:b88c44ae-fa6a-502e-84bd-d5ddc4c53689", "id": "CVE-2016-6816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6816 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util-scan." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util-scan@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:f40e2b10-c93b-55d6-b758-ec145ff54816", "id": "CVE-2016-6817", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6817 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util-scan." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util-scan@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:4b944b8a-2101-591f-b136-4c2d32af4b6d", "id": "CVE-2016-8745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8745 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util-scan." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util-scan@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:a64e8ca7-c2e6-5449-a874-f76e47ebf5f8", "id": "CVE-2016-8747", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8747 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util-scan." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util-scan@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:ca8b84cd-f8fa-54ee-bca9-048c59105dd6", "id": "CVE-2017-12617", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-12617 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util-scan." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util-scan@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:67b64063-0391-516d-a345-d2e535b01776", "id": "CVE-2017-5647", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5647 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util-scan." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util-scan@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:9c32bb51-9649-5c26-9a24-079093a7d17d", "id": "CVE-2017-5648", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5648 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util-scan." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util-scan@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:ff1261c8-f27b-5940-bc39-fb83060ebcf2", "id": "CVE-2017-5650", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5650 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util-scan." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util-scan@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:c17cd513-17fd-561d-944d-9b6d96bbd0d9", "id": "CVE-2017-5651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5651 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util-scan." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util-scan@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:73220b66-4c02-5afb-a11f-3c6327b4ca34", "id": "CVE-2017-5664", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5664 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util-scan." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util-scan@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:0c922a34-b98b-5953-8f4b-2ad436fbc647", "id": "CVE-2017-7674", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7674 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util-scan." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util-scan@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:b13f8778-6573-586b-9490-b60d72d2a1fa", "id": "CVE-2017-7675", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7675 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util-scan." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util-scan@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:ac5fc63f-e979-5668-ad90-babd77698550", "id": "CVE-2018-1304", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1304 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util-scan." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util-scan@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:8d0b703e-a9e6-5ae2-baf7-f9bcecb4df71", "id": "CVE-2018-1305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1305 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util-scan." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util-scan@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:4e2905ca-8a20-53f9-b291-e921caa3acc5", "id": "CVE-2018-1336", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1336 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util-scan." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util-scan@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:8aacc3cb-36f5-5c56-90d5-763df3ad8ed9", "id": "CVE-2018-8014", "analysis": { "state": "not_affected", "detail": "Vulnerability CVE-2018-8014 does not affect version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util-scan. Tomcat Version 8.5.100 is not vulnerable to CVE-2018-8014. Confirmed by manual code inspection and security advisories." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util-scan@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:b0c8339e-ec54-5c22-a844-7aa9175f51bd", "id": "CVE-2018-8034", "analysis": { "state": "not_affected", "detail": "Vulnerability CVE-2018-8034 does not affect version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util-scan. Tomcat Version 8.5.100 is not vulnerable to CVE-2018-8034. Confirmed by manual code inspection and security advisories." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util-scan@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:d5321cbb-2be7-5357-b9e8-ab6906b47e87", "id": "CVE-2020-11996", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11996 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util-scan." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util-scan@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:d3b76490-7925-5cd7-99e3-7020c4b2350a", "id": "CVE-2020-13934", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13934 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util-scan." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util-scan@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:42c67869-33d0-51ae-90a5-4726287428b6", "id": "CVE-2020-13943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13943 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util-scan." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util-scan@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:de7a3091-7259-56b0-a55c-4300c5bccaee", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.tomcat:tomcat-util-scan 8.5.100-tuxcare.8." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util-scan@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:6cf6d279-a152-5280-9fb6-3040baab248f", "id": "CVE-2020-9484", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-9484 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util-scan." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util-scan@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:2b50358f-1047-51ed-9cae-23c64a4626f1", "id": "CVE-2021-24122", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-24122 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util-scan." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util-scan@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:f3e4deb4-72af-50a2-b585-d5ba390ded59", "id": "CVE-2021-42340", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-42340 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util-scan." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util-scan@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:df1e223c-1577-5ed8-ac75-193640864263", "id": "CVE-2022-34305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-34305 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util-scan." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util-scan@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:da484c12-b946-503e-aa74-d077360a7ce1", "id": "CVE-2022-45143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-45143 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util-scan." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util-scan@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:d6a39950-bf67-53ac-9fd0-8abbe3d21984", "id": "CVE-2024-23672", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23672 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util-scan." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util-scan@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:1f667250-978b-5415-9616-9994085b1d2f", "id": "CVE-2024-24549", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-24549 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util-scan." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util-scan@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:05a81e5e-f221-5977-b10a-93af1394c654", "id": "CVE-2024-34750", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-34750 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util-scan." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util-scan@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:83342dd8-8ac4-52af-99dc-43969af56bd0", "id": "CVE-2024-38286", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38286 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util-scan." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util-scan@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:23ddef62-3ca7-56fd-ad10-69877fc31643", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util-scan." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util-scan@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:05028260-a1ad-5ba1-b8b3-6d338298d7ae", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util-scan." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util-scan@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:04197a12-b3c7-57f9-988e-315687ff3810", "id": "CVE-2024-52317", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52317 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util-scan." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util-scan@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:e4edbc0a-e0fd-5c0d-ae5e-458cef670c07", "id": "CVE-2024-54677", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-54677 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util-scan." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util-scan@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:1995bcbd-7513-5bf1-9114-72ecf5c14e1d", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util-scan." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util-scan@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:9eab2837-fecf-5f2a-90ec-4261f76953af", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util-scan." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util-scan@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:394b513f-e80a-5a49-a829-f6cd0e4b1a65", "id": "CVE-2025-31651", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31651 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util-scan." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util-scan@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:3d2abf8f-4ce9-5751-8edc-5b64ae82fd1f", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util-scan." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util-scan@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:f96bb224-4189-5dcc-8bff-734a58fa3027", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util-scan." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util-scan@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:f820d199-cb1b-57ce-b9f6-d10195c60185", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util-scan." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util-scan@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:15d9d6d2-19fc-562f-9b48-8cc02d80de79", "id": "CVE-2025-49125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49125 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util-scan." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util-scan@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:a53863dd-9d53-588e-8c92-20d4ce884030", "id": "CVE-2025-52434", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52434 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util-scan." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util-scan@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:195c7fd5-862a-5173-adde-ec536a13639d", "id": "CVE-2025-52520", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52520 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util-scan." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util-scan@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:1adb6024-761f-5dfc-bdd2-9a71b52d3acb", "id": "CVE-2025-53506", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-53506 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util-scan." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util-scan@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:b04d6c9a-3ba8-5ee4-9c27-7b8946162383", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util-scan." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util-scan@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:45e508ba-2548-59b2-aea5-6502767d14e6", "id": "CVE-2025-55752", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55752 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util-scan." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util-scan@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:3016fed9-2d7c-54a1-9f09-dfd42ff07890", "id": "CVE-2025-55754", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55754 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util-scan." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util-scan@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:d2b30285-4c23-578f-95ac-0d067f7fc4e4", "id": "CVE-2025-61795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61795 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util-scan." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util-scan@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:9d9a293f-5316-565c-8271-800582c95d1e", "id": "CVE-2025-66614", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66614 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util-scan." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util-scan@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:dedf0612-1e72-524e-b8f2-404863395bbb", "id": "CVE-2026-24733", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-24733 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util-scan." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util-scan@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:7deeb5d2-3964-57a6-941c-fd275e854b2d", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util-scan." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util-scan@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:4147cf37-1b85-5e28-a59c-2a014da475e2", "id": "CVE-2026-25854", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25854 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util-scan." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util-scan@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:40be5d01-30cf-5864-a708-0180fa10de09", "id": "CVE-2026-29146", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29146 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util-scan." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util-scan@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:33d9e77f-2e61-5750-b658-d01170c919ad", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util-scan." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util-scan@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:9ab5b009-92dd-55a4-bc11-09869aa4e055", "id": "CVE-2026-34486", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34486 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util-scan." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util-scan@8.5.100-tuxcare.8" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util-scan@8.5.100-tuxcare.8" } ] }