{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:0b21abf4-b94a-556c-8dea-4c860b4aee48", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.wildfly.core/wildfly-core-jakartaee@19.0.1.Final-tuxcare.3", "type": "library", "group": "org.wildfly.core", "name": "wildfly-core-jakartaee", "version": "19.0.1.Final-tuxcare.3", "purl": "pkg:maven/org.wildfly.core/wildfly-core-jakartaee@19.0.1.Final-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:937dcf82-960d-50cc-80e5-a0eeba2704a2", "id": "CVE-2020-10740", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-10740 is a false positive for org.wildfly.core:wildfly-core-jakartaee 19.0.1.Final-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-jakartaee@19.0.1.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:015a7a20-8116-5809-b0bf-da6e0692eae5", "id": "CVE-2020-1719", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-1719 is a false positive for org.wildfly.core:wildfly-core-jakartaee 19.0.1.Final-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-jakartaee@19.0.1.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:897f2888-ca69-5012-bb18-1b272e18b97b", "id": "CVE-2020-25640", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-25640 affects version 19.0.1.Final-tuxcare.3 of org.wildfly.core:wildfly-core-jakartaee." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-jakartaee@19.0.1.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:48120d29-ed40-5661-b91d-4d48e5e28d33", "id": "CVE-2020-25689", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-25689 is a false positive for org.wildfly.core:wildfly-core-jakartaee 19.0.1.Final-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-jakartaee@19.0.1.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:26785087-96e4-5dfc-afb3-9d178c9fa4f9", "id": "CVE-2021-3503", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-3503 is a false positive for org.wildfly.core:wildfly-core-jakartaee 19.0.1.Final-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-jakartaee@19.0.1.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e0e4476d-de6b-50be-a4f1-8c7d190dd54f", "id": "CVE-2021-3536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-3536 affects version 19.0.1.Final-tuxcare.3 of org.wildfly.core:wildfly-core-jakartaee." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-jakartaee@19.0.1.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fc8c420f-6a78-57a0-9d81-a150d45a328c", "id": "CVE-2022-0866", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-0866 is a false positive for org.wildfly.core:wildfly-core-jakartaee 19.0.1.Final-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-jakartaee@19.0.1.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c8c6adc5-ddac-555f-ba32-ebe44a4382c6", "id": "CVE-2022-1278", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-1278 is a false positive for org.wildfly.core:wildfly-core-jakartaee 19.0.1.Final-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-jakartaee@19.0.1.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6ad827a6-a129-54b9-ab10-395c0980d466", "id": "CVE-2023-4061", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-4061 affects version 19.0.1.Final-tuxcare.3 of org.wildfly.core:wildfly-core-jakartaee." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-jakartaee@19.0.1.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2b086dcf-9b8d-574c-b19b-e3c0ae18de57", "id": "CVE-2024-4029", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-4029 affects version 19.0.1.Final-tuxcare.3 of org.wildfly.core:wildfly-core-jakartaee." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-jakartaee@19.0.1.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:11552115-4482-5c37-b204-2157d2fa0c7b", "id": "CVE-2025-23367", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23367 is fixed in version 19.0.1.Final-tuxcare.3 of org.wildfly.core:wildfly-core-jakartaee." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-jakartaee@19.0.1.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e587e478-ad1b-5826-bf84-dcae5532b8ee", "id": "CVE-2025-23368", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-23368 affects version 19.0.1.Final-tuxcare.3 of org.wildfly.core:wildfly-core-jakartaee." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-jakartaee@19.0.1.Final-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-jakartaee@19.0.1.Final-tuxcare.3" } ] }