{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:075b18bd-406a-5cc1-a7d5-82e9e911e34a", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.undertow/undertow-core@2.3.0.Final-tuxcare.2", "type": "library", "group": "io.undertow", "name": "undertow-core", "version": "2.3.0.Final-tuxcare.2", "purl": "pkg:maven/io.undertow/undertow-core@2.3.0.Final-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:3784b9c2-8194-5803-9895-a07a8a9b28ef", "id": "CVE-2022-4492", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-4492 affects version 2.3.0.Final-tuxcare.2 of io.undertow:undertow-core." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-core@2.3.0.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:43e9613c-afe1-56af-bdb4-df302744c309", "id": "CVE-2023-1108", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-1108 affects version 2.3.0.Final-tuxcare.2 of io.undertow:undertow-core." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-core@2.3.0.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9613dea3-6278-59be-ab3c-b20804eb1584", "id": "CVE-2023-1973", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-1973 is fixed in version 2.3.0.Final-tuxcare.2 of io.undertow:undertow-core." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-core@2.3.0.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f5b2a46d-5784-55ad-9646-8b8f51bf5564", "id": "CVE-2023-4639", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-4639 is fixed in version 2.3.0.Final-tuxcare.2 of io.undertow:undertow-core." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-core@2.3.0.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c8413239-14c1-5682-938f-dbb7bc284c8a", "id": "CVE-2024-1459", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-1459 affects version 2.3.0.Final-tuxcare.2 of io.undertow:undertow-core." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-core@2.3.0.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:21062b31-2d4d-557a-a3cf-b8fc205b1877", "id": "CVE-2024-1635", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-1635 is fixed in version 2.3.0.Final-tuxcare.2 of io.undertow:undertow-core." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-core@2.3.0.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:aa554585-0401-51e0-a07d-e42382edf8f7", "id": "CVE-2024-3653", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-3653 affects version 2.3.0.Final-tuxcare.2 of io.undertow:undertow-core." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-core@2.3.0.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ef2dde0d-00da-5f26-89f4-e21204730140", "id": "CVE-2024-5971", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-5971 affects version 2.3.0.Final-tuxcare.2 of io.undertow:undertow-core." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-core@2.3.0.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2a3591cd-1526-559e-9238-0179a384524f", "id": "CVE-2024-6162", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-6162 is fixed in version 2.3.0.Final-tuxcare.2 of io.undertow:undertow-core." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-core@2.3.0.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4b03a7c0-345a-57b4-b072-17b6e50b7247", "id": "CVE-2024-7885", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-7885 is fixed in version 2.3.0.Final-tuxcare.2 of io.undertow:undertow-core." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-core@2.3.0.Final-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.undertow/undertow-core@2.3.0.Final-tuxcare.2" } ] }