{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:0d0da44e-546b-5a65-bf60-a0a512f15688", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.wildfly.core/wildfly-core-management-subsystem@19.0.1.Final-tuxcare.2", "type": "library", "group": "org.wildfly.core", "name": "wildfly-core-management-subsystem", "version": "19.0.1.Final-tuxcare.2", "purl": "pkg:maven/org.wildfly.core/wildfly-core-management-subsystem@19.0.1.Final-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:1cdc80f2-562d-5625-a542-38af1ab88526", "id": "CVE-2020-10740", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-10740 is a false positive for org.wildfly.core:wildfly-core-management-subsystem 19.0.1.Final-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-management-subsystem@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:21cfd53c-84d2-56bb-95d7-da0dd9d0090c", "id": "CVE-2020-1719", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-1719 is a false positive for org.wildfly.core:wildfly-core-management-subsystem 19.0.1.Final-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-management-subsystem@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d4ea5c43-baa5-5280-8f04-e5c48245c5a0", "id": "CVE-2020-25640", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-25640 affects version 19.0.1.Final-tuxcare.2 of org.wildfly.core:wildfly-core-management-subsystem." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-management-subsystem@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2c5e8e43-9399-572c-b587-2816a9d7ec6e", "id": "CVE-2020-25689", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-25689 is a false positive for org.wildfly.core:wildfly-core-management-subsystem 19.0.1.Final-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-management-subsystem@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:086c913d-15d6-5b72-9e3c-01bb41eee029", "id": "CVE-2021-3503", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-3503 is a false positive for org.wildfly.core:wildfly-core-management-subsystem 19.0.1.Final-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-management-subsystem@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:07167442-7dd3-53b2-81e5-254ebfcc103e", "id": "CVE-2021-3536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-3536 affects version 19.0.1.Final-tuxcare.2 of org.wildfly.core:wildfly-core-management-subsystem." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-management-subsystem@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:92594434-b7c3-5d55-b705-f66c6795066a", "id": "CVE-2022-0866", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-0866 is a false positive for org.wildfly.core:wildfly-core-management-subsystem 19.0.1.Final-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-management-subsystem@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d0390106-3e31-5d06-ae74-a2488c71ee03", "id": "CVE-2022-1278", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-1278 is a false positive for org.wildfly.core:wildfly-core-management-subsystem 19.0.1.Final-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-management-subsystem@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6ffd883f-d586-5edf-be77-066f9a2a27b1", "id": "CVE-2023-4061", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-4061 affects version 19.0.1.Final-tuxcare.2 of org.wildfly.core:wildfly-core-management-subsystem." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-management-subsystem@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bc760bc7-4d88-537d-8e1e-0b3c231d6267", "id": "CVE-2024-4029", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-4029 affects version 19.0.1.Final-tuxcare.2 of org.wildfly.core:wildfly-core-management-subsystem." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-management-subsystem@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:439f677f-feed-54b9-a2dd-435249463dbd", "id": "CVE-2025-23367", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23367 is fixed in version 19.0.1.Final-tuxcare.2 of org.wildfly.core:wildfly-core-management-subsystem." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-management-subsystem@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3a154cb8-ea16-5e17-adeb-ce9a413565cd", "id": "CVE-2025-23368", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-23368 affects version 19.0.1.Final-tuxcare.2 of org.wildfly.core:wildfly-core-management-subsystem." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-management-subsystem@19.0.1.Final-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-core-management-subsystem@19.0.1.Final-tuxcare.2" } ] }