{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:3407d259-7883-524b-8ba5-c2c3bdce02a0", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.wildfly.core/wildfly-core-galleon-pack@19.0.1.Final-tuxcare.3", "type": "library", "group": "org.wildfly.core", "name": "wildfly-core-galleon-pack", "version": "19.0.1.Final-tuxcare.3", "purl": "pkg:maven/org.wildfly.core/wildfly-core-galleon-pack@19.0.1.Final-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:fefaf08c-df37-5382-a22b-0c77df034ac2", "id": "CVE-2020-10740", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-10740 is a false positive for org.wildfly.core:wildfly-core-galleon-pack 19.0.1.Final-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-galleon-pack@19.0.1.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1a6a6f88-e07d-512f-bba8-1013eedec58f", "id": "CVE-2020-1719", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-1719 is a false positive for org.wildfly.core:wildfly-core-galleon-pack 19.0.1.Final-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-galleon-pack@19.0.1.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a7527018-7a37-5fb4-a84c-020289e68ed7", "id": "CVE-2020-25640", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-25640 affects version 19.0.1.Final-tuxcare.3 of org.wildfly.core:wildfly-core-galleon-pack." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-galleon-pack@19.0.1.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b0e35a57-9985-5c78-9f7e-e4bfb21243b0", "id": "CVE-2020-25689", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-25689 is a false positive for org.wildfly.core:wildfly-core-galleon-pack 19.0.1.Final-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-galleon-pack@19.0.1.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:dece3fc7-78cd-5bca-afd5-b76ad6d1b232", "id": "CVE-2021-3503", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-3503 is a false positive for org.wildfly.core:wildfly-core-galleon-pack 19.0.1.Final-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-galleon-pack@19.0.1.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f4eb7292-4b37-5cfa-be58-f4bb66998e25", "id": "CVE-2021-3536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-3536 affects version 19.0.1.Final-tuxcare.3 of org.wildfly.core:wildfly-core-galleon-pack." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-galleon-pack@19.0.1.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b5b3b489-5426-5f2b-b71c-4af50c05166d", "id": "CVE-2022-0866", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-0866 is a false positive for org.wildfly.core:wildfly-core-galleon-pack 19.0.1.Final-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-galleon-pack@19.0.1.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a34ab902-7b82-505c-b1ea-0a2744a18754", "id": "CVE-2022-1278", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-1278 is a false positive for org.wildfly.core:wildfly-core-galleon-pack 19.0.1.Final-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-galleon-pack@19.0.1.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ee43f6a6-1dae-52fc-bafc-f1e8a1f08d2e", "id": "CVE-2023-4061", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-4061 affects version 19.0.1.Final-tuxcare.3 of org.wildfly.core:wildfly-core-galleon-pack." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-galleon-pack@19.0.1.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c99b403e-77b1-5703-b9e4-38ae907ab46d", "id": "CVE-2024-4029", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-4029 affects version 19.0.1.Final-tuxcare.3 of org.wildfly.core:wildfly-core-galleon-pack." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-galleon-pack@19.0.1.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:320fe7ee-be1f-5bd7-8328-074ef9398e78", "id": "CVE-2025-23367", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23367 is fixed in version 19.0.1.Final-tuxcare.3 of org.wildfly.core:wildfly-core-galleon-pack." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-galleon-pack@19.0.1.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:62819012-f71d-5c74-8a26-e12134d2c033", "id": "CVE-2025-23368", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-23368 affects version 19.0.1.Final-tuxcare.3 of org.wildfly.core:wildfly-core-galleon-pack." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-galleon-pack@19.0.1.Final-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-galleon-pack@19.0.1.Final-tuxcare.3" } ] }