{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:737180ba-0783-5675-8b77-5efa873de91e", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.wildfly.core/wildfly-deployment-repository@19.0.1.Final-tuxcare.1", "type": "library", "group": "org.wildfly.core", "name": "wildfly-deployment-repository", "version": "19.0.1.Final-tuxcare.1", "purl": "pkg:maven/org.wildfly.core/wildfly-deployment-repository@19.0.1.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:99110685-7d2a-5251-af88-9fcdc4a8f759", "id": "CVE-2020-10740", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-10740 is a false positive for org.wildfly.core:wildfly-deployment-repository 19.0.1.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-deployment-repository@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a44da67f-d076-534b-9c66-11a4f2fd7730", "id": "CVE-2020-1719", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-1719 is a false positive for org.wildfly.core:wildfly-deployment-repository 19.0.1.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-deployment-repository@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:53a34d3a-0d05-5176-a152-dca3a4ef8ffb", "id": "CVE-2020-25640", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-25640 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-deployment-repository." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-deployment-repository@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9ba613fb-ad93-50a6-970c-8167bced71b3", "id": "CVE-2020-25689", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-25689 is a false positive for org.wildfly.core:wildfly-deployment-repository 19.0.1.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-deployment-repository@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c2217017-9e17-57c3-abe5-fbca69ff9747", "id": "CVE-2021-3503", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-3503 is a false positive for org.wildfly.core:wildfly-deployment-repository 19.0.1.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-deployment-repository@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2e2b27d2-0274-5a27-9dde-61a520a3869d", "id": "CVE-2021-3536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-3536 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-deployment-repository." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-deployment-repository@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:947d314e-b1e2-5db4-8cf7-6e97f7d3e9e0", "id": "CVE-2022-0866", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-0866 is a false positive for org.wildfly.core:wildfly-deployment-repository 19.0.1.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-deployment-repository@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c968d5d2-b6b5-5e99-ae5b-9f62bb6948ad", "id": "CVE-2022-1278", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-1278 is a false positive for org.wildfly.core:wildfly-deployment-repository 19.0.1.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-deployment-repository@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:68e1d392-fcb1-5a54-a721-7285b6a6534e", "id": "CVE-2023-4061", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-4061 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-deployment-repository." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-deployment-repository@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:937aaec3-1117-5989-b334-74781936360a", "id": "CVE-2024-4029", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-4029 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-deployment-repository." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-deployment-repository@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:969821b1-892d-599a-8b81-9020a8552112", "id": "CVE-2025-23367", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23367 is fixed in version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-deployment-repository." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-deployment-repository@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a40a6d54-61e2-5410-822a-c0219d87330b", "id": "CVE-2025-23368", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-23368 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-deployment-repository." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-deployment-repository@19.0.1.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-deployment-repository@19.0.1.Final-tuxcare.1" } ] }