{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:e031e152-4368-5e20-9f4f-7052de706c39", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.wildfly.core/wildfly-core-component-matrix@19.0.1.Final-tuxcare.3", "type": "library", "group": "org.wildfly.core", "name": "wildfly-core-component-matrix", "version": "19.0.1.Final-tuxcare.3", "purl": "pkg:maven/org.wildfly.core/wildfly-core-component-matrix@19.0.1.Final-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:03f34c1b-67df-54f6-b3ea-72ec73ffef33", "id": "CVE-2020-10740", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-10740 is a false positive for org.wildfly.core:wildfly-core-component-matrix 19.0.1.Final-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-component-matrix@19.0.1.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fe792f71-90b2-5090-b780-5a2d4f098d10", "id": "CVE-2020-1719", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-1719 is a false positive for org.wildfly.core:wildfly-core-component-matrix 19.0.1.Final-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-component-matrix@19.0.1.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7dfe970d-f38b-599e-a852-5c08bec5f526", "id": "CVE-2020-25640", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-25640 affects version 19.0.1.Final-tuxcare.3 of org.wildfly.core:wildfly-core-component-matrix." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-component-matrix@19.0.1.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:26af1cb4-ea8e-58a4-a261-54e49fedfb34", "id": "CVE-2020-25689", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-25689 is a false positive for org.wildfly.core:wildfly-core-component-matrix 19.0.1.Final-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-component-matrix@19.0.1.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:abca6ab7-9949-5243-85f2-e65b494a4263", "id": "CVE-2021-3503", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-3503 is a false positive for org.wildfly.core:wildfly-core-component-matrix 19.0.1.Final-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-component-matrix@19.0.1.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:85c8034c-a118-5e63-a367-15c43b0f8680", "id": "CVE-2021-3536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-3536 affects version 19.0.1.Final-tuxcare.3 of org.wildfly.core:wildfly-core-component-matrix." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-component-matrix@19.0.1.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:169329ce-29c3-54d3-9017-d923c2356155", "id": "CVE-2022-0866", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-0866 is a false positive for org.wildfly.core:wildfly-core-component-matrix 19.0.1.Final-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-component-matrix@19.0.1.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:aac29899-946d-55bc-9466-10471a06748b", "id": "CVE-2022-1278", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-1278 is a false positive for org.wildfly.core:wildfly-core-component-matrix 19.0.1.Final-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-component-matrix@19.0.1.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:df937f07-0f65-5155-ba61-60544cff8c96", "id": "CVE-2023-4061", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-4061 affects version 19.0.1.Final-tuxcare.3 of org.wildfly.core:wildfly-core-component-matrix." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-component-matrix@19.0.1.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1d58b222-f6d1-55d1-8e05-4daf5d12edbf", "id": "CVE-2024-4029", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-4029 affects version 19.0.1.Final-tuxcare.3 of org.wildfly.core:wildfly-core-component-matrix." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-component-matrix@19.0.1.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:442b3570-3038-5e34-a2ec-ac729b4e2dec", "id": "CVE-2025-23367", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23367 is fixed in version 19.0.1.Final-tuxcare.3 of org.wildfly.core:wildfly-core-component-matrix." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-component-matrix@19.0.1.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e83e67d4-fbf6-59a6-93b7-7ce431d480fa", "id": "CVE-2025-23368", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-23368 affects version 19.0.1.Final-tuxcare.3 of org.wildfly.core:wildfly-core-component-matrix." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-component-matrix@19.0.1.Final-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-component-matrix@19.0.1.Final-tuxcare.3" } ] }