{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:f5cdcde3-7146-52db-a70a-5fc49de6d796", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.wildfly.core/wildfly-deployment-repository@19.0.1.Final-tuxcare.3", "type": "library", "group": "org.wildfly.core", "name": "wildfly-deployment-repository", "version": "19.0.1.Final-tuxcare.3", "purl": "pkg:maven/org.wildfly.core/wildfly-deployment-repository@19.0.1.Final-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:94dc82f1-e613-5eb5-856c-a764a49cf198", "id": "CVE-2020-10740", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-10740 is a false positive for org.wildfly.core:wildfly-deployment-repository 19.0.1.Final-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-deployment-repository@19.0.1.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2d3eeebb-5aee-5946-8732-9de340a95ce1", "id": "CVE-2020-1719", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-1719 is a false positive for org.wildfly.core:wildfly-deployment-repository 19.0.1.Final-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-deployment-repository@19.0.1.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9597334b-1bc0-5db7-ae97-25d714015c38", "id": "CVE-2020-25640", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-25640 affects version 19.0.1.Final-tuxcare.3 of org.wildfly.core:wildfly-deployment-repository." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-deployment-repository@19.0.1.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d7219746-6dd6-5ce5-8af7-c7053735b087", "id": "CVE-2020-25689", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-25689 is a false positive for org.wildfly.core:wildfly-deployment-repository 19.0.1.Final-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-deployment-repository@19.0.1.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c720d87c-e5d1-5c88-8009-42c16b895898", "id": "CVE-2021-3503", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-3503 is a false positive for org.wildfly.core:wildfly-deployment-repository 19.0.1.Final-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-deployment-repository@19.0.1.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:44219974-1d0f-5e19-a571-c8b687d14dc4", "id": "CVE-2021-3536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-3536 affects version 19.0.1.Final-tuxcare.3 of org.wildfly.core:wildfly-deployment-repository." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-deployment-repository@19.0.1.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:00bdc466-909c-5a66-a57f-f2bad4e1bfc4", "id": "CVE-2022-0866", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-0866 is a false positive for org.wildfly.core:wildfly-deployment-repository 19.0.1.Final-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-deployment-repository@19.0.1.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:241baae2-5e8f-5944-bf33-d5d826fad06d", "id": "CVE-2022-1278", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-1278 is a false positive for org.wildfly.core:wildfly-deployment-repository 19.0.1.Final-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-deployment-repository@19.0.1.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6d2572d5-abd8-5aa6-b2e4-696789e852b7", "id": "CVE-2023-4061", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-4061 affects version 19.0.1.Final-tuxcare.3 of org.wildfly.core:wildfly-deployment-repository." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-deployment-repository@19.0.1.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d0718ba2-c93a-5372-8cae-3216732c0acc", "id": "CVE-2024-4029", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-4029 affects version 19.0.1.Final-tuxcare.3 of org.wildfly.core:wildfly-deployment-repository." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-deployment-repository@19.0.1.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a90ffe38-505c-55ca-b36d-c8b09ee9fecc", "id": "CVE-2025-23367", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23367 is fixed in version 19.0.1.Final-tuxcare.3 of org.wildfly.core:wildfly-deployment-repository." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-deployment-repository@19.0.1.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f6f58682-e257-5f0f-b782-4d88605d350d", "id": "CVE-2025-23368", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-23368 affects version 19.0.1.Final-tuxcare.3 of org.wildfly.core:wildfly-deployment-repository." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-deployment-repository@19.0.1.Final-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-deployment-repository@19.0.1.Final-tuxcare.3" } ] }