{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:a2ed9193-b90a-5648-960e-005bb72eb2e4", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.wildfly.core/wildfly-core-management-subsystem@19.0.1.Final-tuxcare.1", "type": "library", "group": "org.wildfly.core", "name": "wildfly-core-management-subsystem", "version": "19.0.1.Final-tuxcare.1", "purl": "pkg:maven/org.wildfly.core/wildfly-core-management-subsystem@19.0.1.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:178593e4-9850-5d08-a61b-ea5b935d4625", "id": "CVE-2020-10740", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-10740 is a false positive for org.wildfly.core:wildfly-core-management-subsystem 19.0.1.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-management-subsystem@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c7b22bdc-492b-56a1-ae31-a1e0ec526c5a", "id": "CVE-2020-1719", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-1719 is a false positive for org.wildfly.core:wildfly-core-management-subsystem 19.0.1.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-management-subsystem@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:48eebc62-360d-545f-9845-6974719aecd2", "id": "CVE-2020-25640", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-25640 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-core-management-subsystem." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-management-subsystem@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0dd073f6-ae25-5c61-99d3-e4d201198b04", "id": "CVE-2020-25689", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-25689 is a false positive for org.wildfly.core:wildfly-core-management-subsystem 19.0.1.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-management-subsystem@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7db3054a-0e22-541c-9051-855915810b8e", "id": "CVE-2021-3503", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-3503 is a false positive for org.wildfly.core:wildfly-core-management-subsystem 19.0.1.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-management-subsystem@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c0715387-215d-5aea-baed-de383f1c1096", "id": "CVE-2021-3536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-3536 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-core-management-subsystem." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-management-subsystem@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1d143843-ddba-5a96-acbc-215aeea47aa4", "id": "CVE-2022-0866", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-0866 is a false positive for org.wildfly.core:wildfly-core-management-subsystem 19.0.1.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-management-subsystem@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:56e7d931-d6c1-5e30-9810-7518c9576b52", "id": "CVE-2022-1278", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-1278 is a false positive for org.wildfly.core:wildfly-core-management-subsystem 19.0.1.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-management-subsystem@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c729c9c1-5856-5b01-8557-0c155058dac3", "id": "CVE-2023-4061", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-4061 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-core-management-subsystem." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-management-subsystem@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4f4a9598-fd0d-5215-85fb-d9cd52875bae", "id": "CVE-2024-4029", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-4029 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-core-management-subsystem." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-management-subsystem@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:52b88f80-34ad-5440-8c37-78a68420879a", "id": "CVE-2025-23367", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23367 is fixed in version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-core-management-subsystem." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-management-subsystem@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:70ddddeb-664c-5cbf-b373-77febe7aad5d", "id": "CVE-2025-23368", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-23368 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-core-management-subsystem." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-management-subsystem@19.0.1.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-management-subsystem@19.0.1.Final-tuxcare.1" } ] }