{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:8514a186-e6c9-5d70-a446-0a09d857c7ea", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.wildfly.core/wildfly-core-jakartaee@19.0.1.Final-tuxcare.1", "type": "library", "group": "org.wildfly.core", "name": "wildfly-core-jakartaee", "version": "19.0.1.Final-tuxcare.1", "purl": "pkg:maven/org.wildfly.core/wildfly-core-jakartaee@19.0.1.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:8905acc7-1a00-5c34-aa45-3b7ff2fdf7b5", "id": "CVE-2020-10740", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-10740 is a false positive for org.wildfly.core:wildfly-core-jakartaee 19.0.1.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-jakartaee@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d056e688-3765-52ff-aeda-bb2944987e6c", "id": "CVE-2020-1719", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-1719 is a false positive for org.wildfly.core:wildfly-core-jakartaee 19.0.1.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-jakartaee@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a678af80-0bee-5585-885b-86a77e5f0210", "id": "CVE-2020-25640", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-25640 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-core-jakartaee." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-jakartaee@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7349f0f9-b3e0-5db5-bca6-b80fd4dccfea", "id": "CVE-2020-25689", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-25689 is a false positive for org.wildfly.core:wildfly-core-jakartaee 19.0.1.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-jakartaee@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c541c681-81cc-507d-8e1c-4235b0341ee8", "id": "CVE-2021-3503", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-3503 is a false positive for org.wildfly.core:wildfly-core-jakartaee 19.0.1.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-jakartaee@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bf6d5603-bf6e-52c8-a985-c19b7d26837f", "id": "CVE-2021-3536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-3536 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-core-jakartaee." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-jakartaee@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:00098eec-1b7d-5c61-a711-23bcd79b882d", "id": "CVE-2022-0866", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-0866 is a false positive for org.wildfly.core:wildfly-core-jakartaee 19.0.1.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-jakartaee@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2f2175f0-b40c-50c4-9345-cb880e545a96", "id": "CVE-2022-1278", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-1278 is a false positive for org.wildfly.core:wildfly-core-jakartaee 19.0.1.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-jakartaee@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6e7e649d-8871-5c18-ba2f-a4aa44cdbad5", "id": "CVE-2023-4061", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-4061 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-core-jakartaee." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-jakartaee@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:556f20e2-9bca-5335-b1ee-565920bbd3ae", "id": "CVE-2024-4029", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-4029 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-core-jakartaee." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-jakartaee@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3b9d6b4d-45dd-5532-aee6-d07efe5e05ec", "id": "CVE-2025-23367", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23367 is fixed in version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-core-jakartaee." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-jakartaee@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d9c18e6e-9ce4-5654-9746-e40431c8a7f3", "id": "CVE-2025-23368", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-23368 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-core-jakartaee." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-jakartaee@19.0.1.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-jakartaee@19.0.1.Final-tuxcare.1" } ] }