{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:17d7a330-b0c3-5256-8dca-1f37f3c77016", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.undertow/undertow-parent@2.3.0.Final-tuxcare.2", "type": "library", "group": "io.undertow", "name": "undertow-parent", "version": "2.3.0.Final-tuxcare.2", "purl": "pkg:maven/io.undertow/undertow-parent@2.3.0.Final-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:fbae72b3-0a62-582d-aa9f-90799a1621bc", "id": "CVE-2022-4492", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-4492 affects version 2.3.0.Final-tuxcare.2 of io.undertow:undertow-parent." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-parent@2.3.0.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:caa17462-572d-5b78-a641-a6c0e5d62900", "id": "CVE-2023-1108", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-1108 affects version 2.3.0.Final-tuxcare.2 of io.undertow:undertow-parent." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-parent@2.3.0.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9ed4df00-1f28-5c50-81d1-ca8af5825796", "id": "CVE-2023-1973", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-1973 is fixed in version 2.3.0.Final-tuxcare.2 of io.undertow:undertow-parent." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-parent@2.3.0.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d13ac2e9-d7f0-5c1f-9c7b-8478169efc7d", "id": "CVE-2023-4639", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-4639 is fixed in version 2.3.0.Final-tuxcare.2 of io.undertow:undertow-parent." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-parent@2.3.0.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:33a7f803-7c25-5955-b402-02f0956eb2fe", "id": "CVE-2024-1459", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-1459 affects version 2.3.0.Final-tuxcare.2 of io.undertow:undertow-parent." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-parent@2.3.0.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:789b5d02-fd26-5003-81d4-5fdc5e8e6696", "id": "CVE-2024-1635", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-1635 is fixed in version 2.3.0.Final-tuxcare.2 of io.undertow:undertow-parent." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-parent@2.3.0.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f9213b12-788c-5eaa-8b59-fef409b4c1bb", "id": "CVE-2024-3653", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-3653 affects version 2.3.0.Final-tuxcare.2 of io.undertow:undertow-parent." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-parent@2.3.0.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b944eb98-b073-58e9-992a-e1386617ce7b", "id": "CVE-2024-5971", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-5971 affects version 2.3.0.Final-tuxcare.2 of io.undertow:undertow-parent." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-parent@2.3.0.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3624a290-cd5f-5137-ab43-416464295772", "id": "CVE-2024-6162", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-6162 is fixed in version 2.3.0.Final-tuxcare.2 of io.undertow:undertow-parent." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-parent@2.3.0.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8772684b-4c5d-5b07-9192-7462d2901821", "id": "CVE-2024-7885", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-7885 is fixed in version 2.3.0.Final-tuxcare.2 of io.undertow:undertow-parent." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-parent@2.3.0.Final-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.undertow/undertow-parent@2.3.0.Final-tuxcare.2" } ] }