{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:f1773111-0e97-5906-ae0f-a50eb13419a8", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.8", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-websocket-api", "version": "8.5.100-tuxcare.8", "purl": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.8" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:2e2be474-1dd2-5839-95eb-4cad1e304d35", "id": "CVE-2016-0762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0762 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:819cc102-47ad-5295-8406-785a2f7cb93b", "id": "CVE-2016-0763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0763 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:64a62add-cc4c-5b4a-ae81-5be51717d277", "id": "CVE-2016-5018", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5018 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:f4edb3a5-1d19-5191-bb89-a9783b855256", "id": "CVE-2016-6794", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6794 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:b7e2dcef-b135-5df4-8e98-8adeb0aad592", "id": "CVE-2016-6796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6796 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:93010a8d-4b01-5ea7-9a12-f358ffb870b7", "id": "CVE-2016-6797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6797 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:ba2bb475-0ed0-575a-9195-0700cf9798d5", "id": "CVE-2016-6816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6816 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:9693ec1d-e0a7-53dd-ad72-67aeb90f84c5", "id": "CVE-2016-6817", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6817 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:4a532bfa-c0e7-5deb-8a37-32a33b027586", "id": "CVE-2016-8745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8745 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:9a1b2c18-beda-50c7-ae47-670c3398573b", "id": "CVE-2016-8747", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8747 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:720494b9-3b4a-53c1-a291-acf0208a25e4", "id": "CVE-2017-12617", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-12617 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:02a6cf56-6a1f-5226-9d35-9fb4c359b2c1", "id": "CVE-2017-5647", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5647 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:48e8d8da-8f34-58b0-a29f-e9fd240cc06c", "id": "CVE-2017-5648", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5648 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:83d0f8b6-ac41-5007-9588-00d0524cb1d8", "id": "CVE-2017-5650", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5650 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:5a34a24d-4163-5d1c-8135-89503c272a5d", "id": "CVE-2017-5651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5651 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:90050275-a1c0-5d52-a1d7-9072513c0f77", "id": "CVE-2017-5664", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5664 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:34eff3f0-9b69-5e6b-b63c-1106887bbdb7", "id": "CVE-2017-7674", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7674 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:300c0ab1-902d-5be8-8cd1-0d9db2610827", "id": "CVE-2017-7675", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7675 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:2554b075-f03e-59e5-bc5a-ab0b00f0d6ca", "id": "CVE-2018-1304", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1304 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:0a5f16f8-6fec-52e1-bd8c-6b87b3b07dd3", "id": "CVE-2018-1305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1305 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:61c168d8-e7af-5d99-b677-c93d629d64bd", "id": "CVE-2018-1336", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1336 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:9ec377fe-50fd-5de3-aadc-f1eeaea90d30", "id": "CVE-2018-8014", "analysis": { "state": "not_affected", "detail": "Vulnerability CVE-2018-8014 does not affect version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket-api. Tomcat Version 8.5.100 is not vulnerable to CVE-2018-8014. Confirmed by manual code inspection and security advisories." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:95157fdf-9a1d-5bd0-9b6e-3d22a6d56a18", "id": "CVE-2018-8034", "analysis": { "state": "not_affected", "detail": "Vulnerability CVE-2018-8034 does not affect version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket-api. Tomcat Version 8.5.100 is not vulnerable to CVE-2018-8034. Confirmed by manual code inspection and security advisories." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:c547df77-afe4-5b1e-8ad3-0d06b09cce79", "id": "CVE-2020-11996", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11996 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:5fc1381d-ec22-5a22-be58-a70673accda2", "id": "CVE-2020-13934", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13934 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:f102e73c-a549-51a3-b957-99d77dba2530", "id": "CVE-2020-13943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13943 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:eb42f1f8-7047-5248-889e-e09ed82c3ba4", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.tomcat:tomcat-websocket-api 8.5.100-tuxcare.8." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:4128074f-ab6a-53b1-9ff2-7f65bbc911f7", "id": "CVE-2020-9484", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-9484 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:b6a53349-1a54-5eb6-a5e1-73c470d75463", "id": "CVE-2021-24122", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-24122 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:a2eff178-b183-5467-9884-104dcad7bea0", "id": "CVE-2021-42340", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-42340 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:0025e844-98a2-54a6-afec-634594cbb549", "id": "CVE-2022-34305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-34305 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:30007a91-1081-5bb5-a6d8-478e297fcf49", "id": "CVE-2022-45143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-45143 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:928ffe09-e686-5052-891f-bae23f90ec43", "id": "CVE-2024-23672", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23672 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:e6ac1b7d-a0d2-5239-9b5a-73585ef4028c", "id": "CVE-2024-24549", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-24549 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:aa3cf623-f6ff-56d2-994f-0f3adda880b7", "id": "CVE-2024-34750", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-34750 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:2113e236-436b-5d9e-af96-64fed40cea98", "id": "CVE-2024-38286", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38286 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:13e770d1-7137-564e-b087-d926794f88be", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:505f3546-1870-551f-bbce-acb74ca4ed28", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:b4a6b6d9-2949-5c1e-8f7e-6168c4b06ad0", "id": "CVE-2024-52317", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52317 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:1f31bf65-ceca-5c92-a5aa-995e60472a91", "id": "CVE-2024-54677", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-54677 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:6c2a3666-9374-598f-a0f8-571c7cca6b53", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:c7f07df2-5539-5cbc-ab27-d852ec686b54", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:26987fd2-7d1b-503d-9422-79b9ea2f92df", "id": "CVE-2025-31651", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31651 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:a71dc001-70a2-5efa-a29a-a1d20a90bf07", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:52ea701b-a0eb-52cf-a6bb-a102dc34b1cb", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:a3a272d1-f87e-5e79-b9ab-ee29aceb580c", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:680dc481-517f-5983-84da-684ffe4c4fe1", "id": "CVE-2025-49125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49125 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:f36eb9d1-c364-56ad-8e9a-a0d812f3d9f8", "id": "CVE-2025-52434", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52434 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:68c54cb4-21b7-572d-8456-155223dd9a81", "id": "CVE-2025-52520", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52520 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:af3c1dc1-7fd3-5d1d-962a-b2ef85d07992", "id": "CVE-2025-53506", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-53506 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:62eb024b-a945-5f4d-a9d0-a2f2f0d8ef93", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:27c14fc6-f7fb-51ae-9fad-fa3fe589b136", "id": "CVE-2025-55752", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55752 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:945c96bd-a5bc-533f-a9fa-ff9191a9c0cc", "id": "CVE-2025-55754", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55754 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:e3cf4bf2-76bc-56c0-b9a9-e411dacbad28", "id": "CVE-2025-61795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61795 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:a850ec94-c5e0-5beb-a8b3-04d9ad63eae9", "id": "CVE-2025-66614", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66614 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:96f53a78-b17b-59b1-8c55-3fc156db501b", "id": "CVE-2026-24733", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-24733 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:db963143-16e1-5282-a3e0-2d78ad3fda1b", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:b0a751f8-8db4-5596-9860-033d04e3f719", "id": "CVE-2026-25854", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25854 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:c2dec082-b49a-5a07-96b1-88852b7794c1", "id": "CVE-2026-29146", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29146 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:21710858-7a98-50f0-8cd2-2e304f53180e", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:95cba0f5-2a9b-5340-8e9b-979c698b5123", "id": "CVE-2026-34486", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34486 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket-api." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.8" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket-api@8.5.100-tuxcare.8" } ] }