{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:72f7a4b5-d948-5dd2-a71a-36a716656c07", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.8", "type": "library", "group": "org.apache.tomcat", "name": "tomcat-websocket", "version": "8.5.100-tuxcare.8", "purl": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.8" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:5e027a3d-129f-5756-bf57-f03db39c4a91", "id": "CVE-2016-0762", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0762 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:90b5bff7-def5-509c-a650-a7bc0be30cd5", "id": "CVE-2016-0763", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-0763 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:51f3e8f3-7b64-5e9a-ba69-686dbc0e9b8d", "id": "CVE-2016-5018", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5018 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:58534e37-8b52-5da9-89cd-0f326161af5b", "id": "CVE-2016-6794", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6794 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:1432e8fd-16bc-5890-a6b7-32758412143e", "id": "CVE-2016-6796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6796 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:c559a893-7883-5b98-85c5-00959c971dcf", "id": "CVE-2016-6797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6797 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:16089d7c-b070-5ce5-ab7a-ef5ae845cf79", "id": "CVE-2016-6816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6816 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:67205cb8-8c4c-5945-99eb-ae617f70c700", "id": "CVE-2016-6817", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6817 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:2564b72f-031a-51ae-8cc9-4acaaed7bba2", "id": "CVE-2016-8745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8745 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:ade335a0-23a4-59a2-abdf-80aa3fa0f57e", "id": "CVE-2016-8747", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8747 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:2ca72b98-9983-5ad1-9f53-67620858ae81", "id": "CVE-2017-12617", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-12617 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:fd560cdd-95a1-57ce-81d5-e9c23a0187a9", "id": "CVE-2017-5647", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5647 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:f7a9302c-2edd-5aa9-9263-f6f4636248a9", "id": "CVE-2017-5648", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5648 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:efc07867-f818-5304-8ccd-164aa7d71edf", "id": "CVE-2017-5650", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5650 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:760e9de5-64f7-5a6b-8725-8a466708f416", "id": "CVE-2017-5651", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5651 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:f4842009-91f7-5b52-81a3-d54b928bef95", "id": "CVE-2017-5664", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-5664 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:48444828-b566-54b9-8928-63cf5ea9acf0", "id": "CVE-2017-7674", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7674 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:db3e2885-958f-5849-a9e3-483dd62d7958", "id": "CVE-2017-7675", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7675 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:7e793053-13b1-5b75-845d-060c6764a75d", "id": "CVE-2018-1304", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1304 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:f9fd3367-a035-5c6b-b624-8e52faf82db0", "id": "CVE-2018-1305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1305 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:2b920b3b-7b75-5ef0-8c18-7af7213d60a9", "id": "CVE-2018-1336", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1336 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:aba7cc91-7eb4-5665-bec7-fbca68b49f6b", "id": "CVE-2018-8014", "analysis": { "state": "not_affected", "detail": "Vulnerability CVE-2018-8014 does not affect version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket. Tomcat Version 8.5.100 is not vulnerable to CVE-2018-8014. Confirmed by manual code inspection and security advisories." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:8c2e3931-4bd0-5c57-af5e-84bbe953fbbb", "id": "CVE-2018-8034", "analysis": { "state": "not_affected", "detail": "Vulnerability CVE-2018-8034 does not affect version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket. Tomcat Version 8.5.100 is not vulnerable to CVE-2018-8034. Confirmed by manual code inspection and security advisories." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:c62b4b00-a120-5ec1-ba0b-b9bed71940be", "id": "CVE-2020-11996", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11996 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:ae76fa23-2703-56dd-a6a3-2ec2e89ca6e8", "id": "CVE-2020-13934", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13934 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:75de00e1-7b31-5edd-9d6b-ab5c14863eb2", "id": "CVE-2020-13943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13943 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:1c053456-03b5-540c-8d6b-810f5747907e", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.tomcat:tomcat-websocket 8.5.100-tuxcare.8." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:9384b38c-b436-5d54-8a1a-eba1ab5cbbd3", "id": "CVE-2020-9484", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-9484 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:f2c0da39-3c94-5236-a8ce-573f8b49afab", "id": "CVE-2021-24122", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-24122 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:9b2ae7fc-878a-5738-8023-e39e3db77264", "id": "CVE-2021-42340", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-42340 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:835eadbc-fa6d-5b7a-b922-adb8cd4d3bec", "id": "CVE-2022-34305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-34305 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:74bdb641-bff9-53b7-ac7a-49d08ba81aa4", "id": "CVE-2022-45143", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-45143 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:247ef725-82b6-5ca9-acfe-a1a004cd9aec", "id": "CVE-2024-23672", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23672 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:bcbda9c4-2d80-55ae-9388-18ba91af0be0", "id": "CVE-2024-24549", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-24549 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:7e15ed3e-4187-528b-96e8-585e8425d3aa", "id": "CVE-2024-34750", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-34750 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:d0fe9c36-8a50-52d5-9b92-570c1cdd67c6", "id": "CVE-2024-38286", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38286 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:465ee01c-7efa-5691-bc61-87d3ce0d0dd3", "id": "CVE-2024-50379", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-50379 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:a709cdc7-2a32-5e0d-9e9a-451c1577c870", "id": "CVE-2024-52316", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52316 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:62840f26-d45a-5d28-821c-2d59d5a833bb", "id": "CVE-2024-52317", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-52317 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:7340d6c9-b3ef-5b1f-92c2-0b20cba2f384", "id": "CVE-2024-54677", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-54677 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:93f36f96-4bb4-5d31-926e-3f4e04977525", "id": "CVE-2025-24813", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24813 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:6dc1b683-6ca9-5160-97d4-da472eb38205", "id": "CVE-2025-31650", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31650 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:a9dff2b9-7782-5e52-a02c-504b39d87278", "id": "CVE-2025-31651", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31651 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:a4621cb2-fb91-56c3-b6be-6cdee426c157", "id": "CVE-2025-46701", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46701 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:9eb89e3b-d831-52ac-a303-dedf34498ebc", "id": "CVE-2025-48988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48988 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:d751839a-6a04-5bed-b4be-c327bfb1b3cc", "id": "CVE-2025-48989", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48989 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:607c791b-4a78-5299-b760-648c5ca3f63e", "id": "CVE-2025-49125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-49125 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:e55f5119-7145-541e-bdbb-9ca885473978", "id": "CVE-2025-52434", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52434 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:4aa03873-e2e6-5b59-b352-3d998765f92c", "id": "CVE-2025-52520", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-52520 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:35e5b793-1ef5-5d0f-b869-7793aa369969", "id": "CVE-2025-53506", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-53506 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:d22b3ea4-d283-5f00-9f38-453fd3427fd7", "id": "CVE-2025-55668", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55668 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:07366f01-f915-5ed1-b64c-bcac24832e1e", "id": "CVE-2025-55752", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55752 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:525a96fc-b3ff-5aef-98f4-1203259053a6", "id": "CVE-2025-55754", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55754 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:08e14cfb-b116-5e21-b774-f90d72c5c934", "id": "CVE-2025-61795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61795 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:10bb8638-6293-5091-9e0f-4463702c5199", "id": "CVE-2025-66614", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66614 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:16b7e36e-bd00-57c1-baf4-6b80d95322d5", "id": "CVE-2026-24733", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-24733 is fixed in version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:837aec4b-4fe5-57ba-9d7b-cfde532f2cf9", "id": "CVE-2026-24880", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24880 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:aecf8777-7643-5103-852b-094193785687", "id": "CVE-2026-25854", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25854 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:c37213ad-023f-51f4-9ccc-8bd32456f887", "id": "CVE-2026-29146", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29146 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:2251c351-6330-501c-be1d-dff42d463057", "id": "CVE-2026-32990", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32990 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.8" } ] }, { "bom-ref": "urn:uuid:b5daf071-3f21-59a5-8b0e-c2904b72bfa0", "id": "CVE-2026-34486", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34486 affects version 8.5.100-tuxcare.8 of org.apache.tomcat:tomcat-websocket." }, "affects": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.8" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tomcat/tomcat-websocket@8.5.100-tuxcare.8" } ] }