{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:c5d2f908-8e05-56cf-ab5b-38061e3fdae3", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.8", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-util", "version": "8.5.100-tuxcare.8", "purl": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.8" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:cef2cdd2-505c-5457-a1b3-5bde40f2bc8d", "id": "CVE-2016-0762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0762 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:b4ca06bf-cee9-5e09-be44-988635af2cf2", "id": "CVE-2016-0763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0763 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:63cc82c8-dd39-5b0c-a1a8-6cc79ffbaece", "id": "CVE-2016-5018", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5018 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:6a532024-d696-589b-8cc2-97f15b3b3b03", "id": "CVE-2016-6794", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6794 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:b7ae898c-0eb0-51f8-ba7a-3f131b25b678", "id": "CVE-2016-6796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6796 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:f52845f1-8b72-58cb-ad78-215a6020ff47", "id": "CVE-2016-6797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6797 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:63e0e7d3-598e-5286-87eb-215c333b0ad9", "id": "CVE-2016-6816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6816 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:505aa2f9-62e0-5fe8-a45a-f8b7c3539506", "id": "CVE-2016-6817", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6817 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:fe68fad5-15e2-536b-8a08-53826e6de53c", "id": "CVE-2016-8745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8745 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:8c5f0909-d68b-56d1-8417-dd692268e582", "id": "CVE-2016-8747", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8747 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:f17dc243-fdc5-5f4f-b368-5ed2c575dd62", "id": "CVE-2017-12617", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-12617 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:7468bbf0-3abe-592b-b309-d90a35e977b4", "id": "CVE-2017-5647", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5647 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:d1de2f52-9a1e-5f1e-9f9a-80dfa097bb4a", "id": "CVE-2017-5648", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5648 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:9e10d488-2b72-597e-b046-7c5e88415cf9", "id": "CVE-2017-5650", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5650 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:eee64dea-0135-563d-88cc-cc5ddf525fe0", "id": "CVE-2017-5651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5651 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:9b59ed9f-d440-566f-9055-e3d9aa1d35df", "id": "CVE-2017-5664", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5664 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:42e0feb7-15e5-5e9f-8f42-0510f12f88d7", "id": "CVE-2017-7674", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7674 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:10d80d53-3f17-5bd1-a172-86364c5d9bc2", "id": "CVE-2017-7675", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7675 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:7d524a8a-80dc-5fef-bba2-b87215efe886", "id": "CVE-2018-1304", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1304 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:9cf1d4ce-2637-5978-bcb8-16556421d1b8", "id": "CVE-2018-1305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1305 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:83e9b5c8-8b27-52e2-9d23-4b7fb1e05879", "id": "CVE-2018-1336", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1336 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:9fa108ed-1906-5e36-b8df-a9257ae53304", "id": "CVE-2018-8014", "analysis": { "state": "not_affected", "detail": "Vulnerability CVE-2018-8014 does not affect version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util. Tomcat Version 8.5.100 is not vulnerable to CVE-2018-8014. Confirmed by manual code inspection and security advisories." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:b523b452-d9b3-5d94-8773-46cf47a2007f", "id": "CVE-2018-8034", "analysis": { "state": "not_affected", "detail": "Vulnerability CVE-2018-8034 does not affect version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util. Tomcat Version 8.5.100 is not vulnerable to CVE-2018-8034. Confirmed by manual code inspection and security advisories." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:56bec45a-af0a-5228-b657-be6fbe725575", "id": "CVE-2020-11996", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11996 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:18f6fa3b-5881-5694-9f6a-d9d7d248a840", "id": "CVE-2020-13934", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13934 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:89f75023-22bc-5475-81fd-7613df1c3af5", "id": "CVE-2020-13943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13943 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:e57460d1-9b67-574e-832d-9d4c880046d8", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.tomcat:tomcat-util 8.5.100-tuxcare.8." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:27055b27-f2f1-55fe-a1b5-9357ae48d82b", "id": "CVE-2020-9484", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-9484 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:e61b134d-2b23-5625-91ac-6224f6e2c0ca", "id": "CVE-2021-24122", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-24122 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:6221f963-b07f-5989-9c57-b023964d0575", "id": "CVE-2021-42340", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-42340 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:7bcedb63-f415-581a-b528-ba304b9b8257", "id": "CVE-2022-34305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-34305 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:0dfc25db-e4b8-5a17-bca8-9cc7aed3f2aa", "id": "CVE-2022-45143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-45143 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:001417f5-841c-54b4-9a28-bc426c72b07e", "id": "CVE-2024-23672", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23672 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:8d7bd09c-7a73-549a-8b46-2ee3fe5df667", "id": "CVE-2024-24549", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-24549 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:e3633e79-4a76-5798-be5c-b65a94fabbe2", "id": "CVE-2024-34750", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-34750 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:fde7f8a8-fb75-5079-9b7e-f0726aa3e85b", "id": "CVE-2024-38286", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38286 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:23b92e53-3d7f-5aae-8c6a-5831cf16ad11", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:372fc4dc-186e-5dcd-94a1-ba60d55cfee2", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:fa1fa29a-6aab-5e9f-9c0b-ef36721847f7", "id": "CVE-2024-52317", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52317 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:0b2a3617-bde6-5a38-a74f-d393c8e4426b", "id": "CVE-2024-54677", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-54677 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:7d1bd609-595b-5657-bf26-c9d6f4ca5e03", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:92b19429-fc63-51e0-a62e-65b4202b5d2d", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:11e90193-3875-5ebb-a427-e509a5079937", "id": "CVE-2025-31651", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31651 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:15e9925b-62be-5032-a696-a547fcbae524", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:50e29142-f38f-5f92-8aaa-55f34177bf93", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:ac3be7c8-7cba-5fb8-92b1-05b12ef6ca87", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:8352a741-a9a7-5379-9305-2bd29b33aa3f", "id": "CVE-2025-49125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49125 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:74a50e5c-76d6-5039-b35c-a2f536e71bd6", "id": "CVE-2025-52434", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52434 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:abe5c0a8-d996-500a-9372-6079948653c1", "id": "CVE-2025-52520", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52520 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:63711f6a-a6de-51b0-a796-374b05ed7ed6", "id": "CVE-2025-53506", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-53506 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:c502fb78-7744-5649-b344-442af4f50c35", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:6cee9c79-b377-5b66-8c65-951febdc3985", "id": "CVE-2025-55752", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55752 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:a4092954-62e0-5955-a791-06987c98a02d", "id": "CVE-2025-55754", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55754 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:f50865c2-3819-58ee-a9b1-9e1e816f3037", "id": "CVE-2025-61795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61795 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:c1c7a09d-c3c3-598b-8381-0bf87271be50", "id": "CVE-2025-66614", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66614 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:c6e0cf6f-3a23-5842-824e-0576be07d229", "id": "CVE-2026-24733", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-24733 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:a18164d6-3ca2-5ca8-a9b4-c7e92a9d243c", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:9a804ef1-cddb-5208-af93-8bce86f6ae4e", "id": "CVE-2026-25854", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25854 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:cc228d5e-69a1-5f2a-905e-2fe6a8b86985", "id": "CVE-2026-29146", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29146 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:c9325cac-e128-53de-9e2c-4d5dba8e385a", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:03d62561-67f5-5431-9120-8180f910e265", "id": "CVE-2026-34486", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34486 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-util." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.8" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-util@8.5.100-tuxcare.8" } ] }