{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:9df7762a-bf9a-5f94-804f-313a38d21e71", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.wildfly.core/wildfly-core-feature-pack-ee-10-api@19.0.1.Final-tuxcare.1", "type": "library", "group": "org.wildfly.core", "name": "wildfly-core-feature-pack-ee-10-api", "version": "19.0.1.Final-tuxcare.1", "purl": "pkg:maven/org.wildfly.core/wildfly-core-feature-pack-ee-10-api@19.0.1.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:12d82586-4325-55cf-baff-b4e1428fed3a", "id": "CVE-2020-10740", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-10740 is a false positive for org.wildfly.core:wildfly-core-feature-pack-ee-10-api 19.0.1.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-feature-pack-ee-10-api@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cef4808d-a34d-5639-abe3-51545e2aa5c2", "id": "CVE-2020-1719", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-1719 is a false positive for org.wildfly.core:wildfly-core-feature-pack-ee-10-api 19.0.1.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-feature-pack-ee-10-api@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0b24f564-d307-521b-a13e-a2bc19c4d6c1", "id": "CVE-2020-25640", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-25640 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-core-feature-pack-ee-10-api." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-feature-pack-ee-10-api@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e9a64fe8-6526-5315-a84d-151c92aec76f", "id": "CVE-2020-25689", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-25689 is a false positive for org.wildfly.core:wildfly-core-feature-pack-ee-10-api 19.0.1.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-feature-pack-ee-10-api@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c1dbbcd7-1795-50d1-ad7f-6bed6be7d0d7", "id": "CVE-2021-3503", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-3503 is a false positive for org.wildfly.core:wildfly-core-feature-pack-ee-10-api 19.0.1.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-feature-pack-ee-10-api@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:99b89874-898b-570d-8619-9ec3694ca9fd", "id": "CVE-2021-3536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-3536 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-core-feature-pack-ee-10-api." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-feature-pack-ee-10-api@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7b7b4e13-49ed-5d16-b902-5fec42315814", "id": "CVE-2022-0866", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-0866 is a false positive for org.wildfly.core:wildfly-core-feature-pack-ee-10-api 19.0.1.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-feature-pack-ee-10-api@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b0d35e32-bcd8-566a-ab06-e517e593ec11", "id": "CVE-2022-1278", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-1278 is a false positive for org.wildfly.core:wildfly-core-feature-pack-ee-10-api 19.0.1.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-feature-pack-ee-10-api@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6f8f3313-a10b-5b75-bf82-6cc66c968eac", "id": "CVE-2023-4061", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-4061 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-core-feature-pack-ee-10-api." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-feature-pack-ee-10-api@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ee990726-a3a4-57b2-b41b-139d154dbe7c", "id": "CVE-2024-4029", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-4029 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-core-feature-pack-ee-10-api." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-feature-pack-ee-10-api@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3f2522cc-cb19-5965-8dcf-c3d318830e48", "id": "CVE-2025-23367", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23367 is fixed in version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-core-feature-pack-ee-10-api." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-feature-pack-ee-10-api@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7fb8ef87-b2ab-510f-8dfc-c7bd1d3ad376", "id": "CVE-2025-23368", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-23368 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-core-feature-pack-ee-10-api." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-feature-pack-ee-10-api@19.0.1.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-feature-pack-ee-10-api@19.0.1.Final-tuxcare.1" } ] }