{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:1a2435fc-5ffb-5df2-8827-02ae92c8ce88", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.wildfly.core/wildfly-core-feature-pack-ee-10-api@19.0.1.Final-tuxcare.2", "type": "library", "group": "org.wildfly.core", "name": "wildfly-core-feature-pack-ee-10-api", "version": "19.0.1.Final-tuxcare.2", "purl": "pkg:maven/org.wildfly.core/wildfly-core-feature-pack-ee-10-api@19.0.1.Final-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:e985fea5-1a37-54e5-a272-75a6117f0409", "id": "CVE-2020-10740", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-10740 is a false positive for org.wildfly.core:wildfly-core-feature-pack-ee-10-api 19.0.1.Final-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-feature-pack-ee-10-api@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:38945fc6-bc16-535a-a608-5bc7d56beef5", "id": "CVE-2020-1719", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-1719 is a false positive for org.wildfly.core:wildfly-core-feature-pack-ee-10-api 19.0.1.Final-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-feature-pack-ee-10-api@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:737d474e-db23-5058-8198-d24424228aae", "id": "CVE-2020-25640", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-25640 affects version 19.0.1.Final-tuxcare.2 of org.wildfly.core:wildfly-core-feature-pack-ee-10-api." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-feature-pack-ee-10-api@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:96aebed9-24f8-50dc-a8ae-027e8ed318d0", "id": "CVE-2020-25689", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-25689 is a false positive for org.wildfly.core:wildfly-core-feature-pack-ee-10-api 19.0.1.Final-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-feature-pack-ee-10-api@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8c89ad7c-cc94-59dd-96aa-8d1ebd7fff01", "id": "CVE-2021-3503", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-3503 is a false positive for org.wildfly.core:wildfly-core-feature-pack-ee-10-api 19.0.1.Final-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-feature-pack-ee-10-api@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fc32d64f-39f1-538b-a416-0c192067b562", "id": "CVE-2021-3536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-3536 affects version 19.0.1.Final-tuxcare.2 of org.wildfly.core:wildfly-core-feature-pack-ee-10-api." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-feature-pack-ee-10-api@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bd387fcf-7e1d-5458-8ed7-25da306c54b2", "id": "CVE-2022-0866", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-0866 is a false positive for org.wildfly.core:wildfly-core-feature-pack-ee-10-api 19.0.1.Final-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-feature-pack-ee-10-api@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b91a92bd-35ec-5656-84c5-a68d1b3ca6b8", "id": "CVE-2022-1278", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-1278 is a false positive for org.wildfly.core:wildfly-core-feature-pack-ee-10-api 19.0.1.Final-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-feature-pack-ee-10-api@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7d130197-597e-56fd-b4f1-f61fe128786e", "id": "CVE-2023-4061", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-4061 affects version 19.0.1.Final-tuxcare.2 of org.wildfly.core:wildfly-core-feature-pack-ee-10-api." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-feature-pack-ee-10-api@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:98f5d5cd-0e45-5c5f-8f3d-78da710f5af1", "id": "CVE-2024-4029", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-4029 affects version 19.0.1.Final-tuxcare.2 of org.wildfly.core:wildfly-core-feature-pack-ee-10-api." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-feature-pack-ee-10-api@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7bd817db-7e2e-5038-a192-0a278b865337", "id": "CVE-2025-23367", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23367 is fixed in version 19.0.1.Final-tuxcare.2 of org.wildfly.core:wildfly-core-feature-pack-ee-10-api." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-feature-pack-ee-10-api@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:dd5e385d-2a35-5929-9c2b-c75a7e9df0b6", "id": "CVE-2025-23368", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-23368 affects version 19.0.1.Final-tuxcare.2 of org.wildfly.core:wildfly-core-feature-pack-ee-10-api." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-feature-pack-ee-10-api@19.0.1.Final-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-feature-pack-ee-10-api@19.0.1.Final-tuxcare.2" } ] }