{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:d03e8340-4afa-5c68-ac91-f779481bddc6", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.wildfly.core/wildfly-core-galleon-pack@19.0.1.Final-tuxcare.1", "type": "library", "group": "org.wildfly.core", "name": "wildfly-core-galleon-pack", "version": "19.0.1.Final-tuxcare.1", "purl": "pkg:maven/org.wildfly.core/wildfly-core-galleon-pack@19.0.1.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:85754e53-6403-5b33-960e-049790ff32d4", "id": "CVE-2020-10740", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-10740 is a false positive for org.wildfly.core:wildfly-core-galleon-pack 19.0.1.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-galleon-pack@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ec9d8caf-3482-5512-a27e-c73f0cc446fb", "id": "CVE-2020-1719", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-1719 is a false positive for org.wildfly.core:wildfly-core-galleon-pack 19.0.1.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-galleon-pack@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3bb3e6b8-d5dd-53ad-b0ee-ac30494f2918", "id": "CVE-2020-25640", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-25640 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-core-galleon-pack." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-galleon-pack@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fd35f87b-5c39-51f6-900c-3cf566ad6e38", "id": "CVE-2020-25689", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-25689 is a false positive for org.wildfly.core:wildfly-core-galleon-pack 19.0.1.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-galleon-pack@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7c3b01b1-cd2e-59d9-b9c7-3a13ec375f23", "id": "CVE-2021-3503", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-3503 is a false positive for org.wildfly.core:wildfly-core-galleon-pack 19.0.1.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-galleon-pack@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a21cacb3-629a-579c-97f7-56a73f37d866", "id": "CVE-2021-3536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-3536 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-core-galleon-pack." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-galleon-pack@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2289f018-5684-5eba-b265-76ed06a14d8e", "id": "CVE-2022-0866", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-0866 is a false positive for org.wildfly.core:wildfly-core-galleon-pack 19.0.1.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-galleon-pack@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:50ae8b1f-7bc9-5e4a-ad5d-deb4a1975a24", "id": "CVE-2022-1278", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-1278 is a false positive for org.wildfly.core:wildfly-core-galleon-pack 19.0.1.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-galleon-pack@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:71c181a0-098c-5928-973b-396f0ae04874", "id": "CVE-2023-4061", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-4061 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-core-galleon-pack." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-galleon-pack@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7ba4a5ab-7a60-564f-b97f-2eb5e5c5d31e", "id": "CVE-2024-4029", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-4029 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-core-galleon-pack." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-galleon-pack@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:09e46706-42fb-5120-a5a4-0ea56bfb86ee", "id": "CVE-2025-23367", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23367 is fixed in version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-core-galleon-pack." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-galleon-pack@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:68ac0272-2b97-5409-a1b8-b2c43f166bfa", "id": "CVE-2025-23368", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-23368 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-core-galleon-pack." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-galleon-pack@19.0.1.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-galleon-pack@19.0.1.Final-tuxcare.1" } ] }