{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:503b4c3e-9706-595a-9f72-e4b60cc8388a", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.undertow/undertow-benchmarks@2.3.0.Final-tuxcare.1", "type": "library", "group": "io.undertow", "name": "undertow-benchmarks", "version": "2.3.0.Final-tuxcare.1", "purl": "pkg:maven/io.undertow/undertow-benchmarks@2.3.0.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:ce4ad08f-cbd3-5f4c-a637-6871dc36510f", "id": "CVE-2022-4492", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-4492 affects version 2.3.0.Final-tuxcare.1 of io.undertow:undertow-benchmarks." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-benchmarks@2.3.0.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:96d3a789-ebb9-5bf3-82a4-8a65284a17f8", "id": "CVE-2023-1108", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-1108 affects version 2.3.0.Final-tuxcare.1 of io.undertow:undertow-benchmarks." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-benchmarks@2.3.0.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cb35a8e3-eb1a-5db6-959b-7689560d37a2", "id": "CVE-2023-1973", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-1973 is fixed in version 2.3.0.Final-tuxcare.1 of io.undertow:undertow-benchmarks." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-benchmarks@2.3.0.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c33cebad-60b8-5a85-9922-9f1311a0b283", "id": "CVE-2023-4639", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-4639 is fixed in version 2.3.0.Final-tuxcare.1 of io.undertow:undertow-benchmarks." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-benchmarks@2.3.0.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:da8e87d7-34ae-5a2a-b494-138026903269", "id": "CVE-2024-1459", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-1459 affects version 2.3.0.Final-tuxcare.1 of io.undertow:undertow-benchmarks." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-benchmarks@2.3.0.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cc1d268f-80d2-578d-aa22-62c0e95771a0", "id": "CVE-2024-1635", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-1635 affects version 2.3.0.Final-tuxcare.1 of io.undertow:undertow-benchmarks." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-benchmarks@2.3.0.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a1e19212-1dbe-5ba3-ab3c-f40444ddd2af", "id": "CVE-2024-3653", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-3653 affects version 2.3.0.Final-tuxcare.1 of io.undertow:undertow-benchmarks." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-benchmarks@2.3.0.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:96125deb-760d-5e39-9781-8e62d12cb92e", "id": "CVE-2024-5971", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-5971 affects version 2.3.0.Final-tuxcare.1 of io.undertow:undertow-benchmarks." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-benchmarks@2.3.0.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6eaae5a1-96ab-5779-afc8-5edeb825f936", "id": "CVE-2024-6162", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-6162 is fixed in version 2.3.0.Final-tuxcare.1 of io.undertow:undertow-benchmarks." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-benchmarks@2.3.0.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:444e3af7-fcf4-5b9d-9fe5-4ca0cb0f461f", "id": "CVE-2024-7885", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-7885 is fixed in version 2.3.0.Final-tuxcare.1 of io.undertow:undertow-benchmarks." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-benchmarks@2.3.0.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.undertow/undertow-benchmarks@2.3.0.Final-tuxcare.1" } ] }