{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:d6a8a10d-87c3-509d-a9a3-a7e2fc425005", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration-legacy-namespace@19.0.1.Final-tuxcare.3", "type": "library", "group": "org.wildfly.core", "name": "wildfly-elytron-integration-legacy-namespace", "version": "19.0.1.Final-tuxcare.3", "purl": "pkg:maven/org.wildfly.core/wildfly-elytron-integration-legacy-namespace@19.0.1.Final-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:4c49b237-6f62-5c4e-b20b-9be8f3d47392", "id": "CVE-2020-10740", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-10740 is a false positive for org.wildfly.core:wildfly-elytron-integration-legacy-namespace 19.0.1.Final-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration-legacy-namespace@19.0.1.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:73078f2a-46f4-50af-92a2-bd3632242a75", "id": "CVE-2020-1719", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-1719 is a false positive for org.wildfly.core:wildfly-elytron-integration-legacy-namespace 19.0.1.Final-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration-legacy-namespace@19.0.1.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:014c5065-7fde-5067-b99a-e0aaa81eecd9", "id": "CVE-2020-25640", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-25640 affects version 19.0.1.Final-tuxcare.3 of org.wildfly.core:wildfly-elytron-integration-legacy-namespace." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration-legacy-namespace@19.0.1.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b4493228-f815-5b1d-922b-afac271fd97e", "id": "CVE-2020-25689", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-25689 is a false positive for org.wildfly.core:wildfly-elytron-integration-legacy-namespace 19.0.1.Final-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration-legacy-namespace@19.0.1.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ec4f8e6d-0ec6-5a70-a791-d35185e3bc5f", "id": "CVE-2021-3503", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-3503 is a false positive for org.wildfly.core:wildfly-elytron-integration-legacy-namespace 19.0.1.Final-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration-legacy-namespace@19.0.1.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d9767fcf-7451-5c89-a96e-a2a56dad331e", "id": "CVE-2021-3536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-3536 affects version 19.0.1.Final-tuxcare.3 of org.wildfly.core:wildfly-elytron-integration-legacy-namespace." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration-legacy-namespace@19.0.1.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:26fc56dc-7a8f-541c-a505-1b9924588ca0", "id": "CVE-2022-0866", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-0866 is a false positive for org.wildfly.core:wildfly-elytron-integration-legacy-namespace 19.0.1.Final-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration-legacy-namespace@19.0.1.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d1c63b31-377e-59fc-8c01-6dff0bfa9e16", "id": "CVE-2022-1278", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-1278 is a false positive for org.wildfly.core:wildfly-elytron-integration-legacy-namespace 19.0.1.Final-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration-legacy-namespace@19.0.1.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9dfe679c-40db-5e37-a1a8-5e547f595c2b", "id": "CVE-2023-4061", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-4061 affects version 19.0.1.Final-tuxcare.3 of org.wildfly.core:wildfly-elytron-integration-legacy-namespace." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration-legacy-namespace@19.0.1.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b7ddc7b2-17a2-5ab0-9f02-d92deaa7b50b", "id": "CVE-2024-4029", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-4029 affects version 19.0.1.Final-tuxcare.3 of org.wildfly.core:wildfly-elytron-integration-legacy-namespace." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration-legacy-namespace@19.0.1.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8afd5b21-ae5e-5259-bbaa-f23326b2837f", "id": "CVE-2025-23367", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23367 is fixed in version 19.0.1.Final-tuxcare.3 of org.wildfly.core:wildfly-elytron-integration-legacy-namespace." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration-legacy-namespace@19.0.1.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9249b049-508b-5d80-a787-6b9f335ee58a", "id": "CVE-2025-23368", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-23368 affects version 19.0.1.Final-tuxcare.3 of org.wildfly.core:wildfly-elytron-integration-legacy-namespace." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration-legacy-namespace@19.0.1.Final-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration-legacy-namespace@19.0.1.Final-tuxcare.3" } ] }