{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:1e634ee7-0d57-5428-842e-5992c72d0fcc", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.wildfly.core/wildfly-core-feature-pack-parent@19.0.1.Final-tuxcare.1", "type": "library", "group": "org.wildfly.core", "name": "wildfly-core-feature-pack-parent", "version": "19.0.1.Final-tuxcare.1", "purl": "pkg:maven/org.wildfly.core/wildfly-core-feature-pack-parent@19.0.1.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:2974cf1b-545c-530a-9af0-06f3aa2be555", "id": "CVE-2020-10740", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-10740 is a false positive for org.wildfly.core:wildfly-core-feature-pack-parent 19.0.1.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-feature-pack-parent@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:df6a1dfa-60dc-5d34-a14f-738a9fc72e8f", "id": "CVE-2020-1719", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-1719 is a false positive for org.wildfly.core:wildfly-core-feature-pack-parent 19.0.1.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-feature-pack-parent@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a87c9142-a11e-576d-80a2-5ea3d587f819", "id": "CVE-2020-25640", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-25640 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-core-feature-pack-parent." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-feature-pack-parent@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e3381c4d-cc6a-5552-a508-6f6a214745aa", "id": "CVE-2020-25689", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-25689 is a false positive for org.wildfly.core:wildfly-core-feature-pack-parent 19.0.1.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-feature-pack-parent@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d4fd5b1e-1ed6-5c4e-aabb-5eb66509afe4", "id": "CVE-2021-3503", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-3503 is a false positive for org.wildfly.core:wildfly-core-feature-pack-parent 19.0.1.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-feature-pack-parent@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cbea2418-a75f-5d08-8b3b-2aaccb504aca", "id": "CVE-2021-3536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-3536 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-core-feature-pack-parent." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-feature-pack-parent@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4fa9f10f-8f8b-5667-8e08-50a4fd621c94", "id": "CVE-2022-0866", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-0866 is a false positive for org.wildfly.core:wildfly-core-feature-pack-parent 19.0.1.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-feature-pack-parent@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dabecc06-0100-5879-aaf2-14cffacb7827", "id": "CVE-2022-1278", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-1278 is a false positive for org.wildfly.core:wildfly-core-feature-pack-parent 19.0.1.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-feature-pack-parent@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e0420879-3522-5eb1-aab7-ff58c355ced6", "id": "CVE-2023-4061", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-4061 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-core-feature-pack-parent." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-feature-pack-parent@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:94a8a514-e25f-54dd-8d36-21644fe52484", "id": "CVE-2024-4029", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-4029 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-core-feature-pack-parent." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-feature-pack-parent@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d8da6107-cd0b-523e-b26e-1714f3be0295", "id": "CVE-2025-23367", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23367 is fixed in version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-core-feature-pack-parent." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-feature-pack-parent@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5fece602-0a1d-51b1-a1be-cd162823b501", "id": "CVE-2025-23368", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-23368 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-core-feature-pack-parent." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-feature-pack-parent@19.0.1.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-feature-pack-parent@19.0.1.Final-tuxcare.1" } ] }