{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:1817b37f-6830-5720-a3da-0a313e812881", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.wildfly.core/wildfly-core-galleon-pack@19.0.1.Final-tuxcare.2", "type": "library", "group": "org.wildfly.core", "name": "wildfly-core-galleon-pack", "version": "19.0.1.Final-tuxcare.2", "purl": "pkg:maven/org.wildfly.core/wildfly-core-galleon-pack@19.0.1.Final-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:2a9f8d5f-3b3b-5fc2-aebd-dff92385f680", "id": "CVE-2020-10740", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-10740 is a false positive for org.wildfly.core:wildfly-core-galleon-pack 19.0.1.Final-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-galleon-pack@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8ea01a1f-d717-58d1-94cd-e51462ab3b0b", "id": "CVE-2020-1719", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-1719 is a false positive for org.wildfly.core:wildfly-core-galleon-pack 19.0.1.Final-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-galleon-pack@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0fdc5f58-434c-51ae-b1a8-dee4a8ce4684", "id": "CVE-2020-25640", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-25640 affects version 19.0.1.Final-tuxcare.2 of org.wildfly.core:wildfly-core-galleon-pack." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-galleon-pack@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c86f1f23-9e8d-58aa-8817-841799b7fb08", "id": "CVE-2020-25689", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-25689 is a false positive for org.wildfly.core:wildfly-core-galleon-pack 19.0.1.Final-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-galleon-pack@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1f677309-7d1e-50f7-af24-5cd1a25a2384", "id": "CVE-2021-3503", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-3503 is a false positive for org.wildfly.core:wildfly-core-galleon-pack 19.0.1.Final-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-galleon-pack@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5110b5c1-4b11-56bb-86c6-a6eaff135b94", "id": "CVE-2021-3536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-3536 affects version 19.0.1.Final-tuxcare.2 of org.wildfly.core:wildfly-core-galleon-pack." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-galleon-pack@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5ec299b9-8b17-59a5-ae9f-ee40638ea713", "id": "CVE-2022-0866", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-0866 is a false positive for org.wildfly.core:wildfly-core-galleon-pack 19.0.1.Final-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-galleon-pack@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2da75f1f-e490-544c-9136-b8b2eedfa119", "id": "CVE-2022-1278", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-1278 is a false positive for org.wildfly.core:wildfly-core-galleon-pack 19.0.1.Final-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-galleon-pack@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:dffb08fa-c24f-5808-969f-fd7456e0c9c7", "id": "CVE-2023-4061", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-4061 affects version 19.0.1.Final-tuxcare.2 of org.wildfly.core:wildfly-core-galleon-pack." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-galleon-pack@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6433f503-5fae-5d71-a7d8-0f7f9476f676", "id": "CVE-2024-4029", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-4029 affects version 19.0.1.Final-tuxcare.2 of org.wildfly.core:wildfly-core-galleon-pack." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-galleon-pack@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9063da52-71cd-5d04-8b29-58e95333874e", "id": "CVE-2025-23367", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23367 is fixed in version 19.0.1.Final-tuxcare.2 of org.wildfly.core:wildfly-core-galleon-pack." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-galleon-pack@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5d461d9b-344e-56f1-abb7-fdb3ebf64602", "id": "CVE-2025-23368", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-23368 affects version 19.0.1.Final-tuxcare.2 of org.wildfly.core:wildfly-core-galleon-pack." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-galleon-pack@19.0.1.Final-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-galleon-pack@19.0.1.Final-tuxcare.2" } ] }