{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:aaccd55e-9c26-545c-8070-25f716e5a216", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration@19.0.1.Final-tuxcare.3", "type": "library", "group": "org.wildfly.core", "name": "wildfly-elytron-integration", "version": "19.0.1.Final-tuxcare.3", "purl": "pkg:maven/org.wildfly.core/wildfly-elytron-integration@19.0.1.Final-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:8984601f-1366-5e9e-be2a-6db5a4340828", "id": "CVE-2020-10740", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-10740 is a false positive for org.wildfly.core:wildfly-elytron-integration 19.0.1.Final-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration@19.0.1.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:cf4927df-f296-5eb5-9816-fe7be2b0cb48", "id": "CVE-2020-1719", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-1719 is a false positive for org.wildfly.core:wildfly-elytron-integration 19.0.1.Final-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration@19.0.1.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d73a8fbc-4184-5731-8cbe-d499da83ecb3", "id": "CVE-2020-25640", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-25640 affects version 19.0.1.Final-tuxcare.3 of org.wildfly.core:wildfly-elytron-integration." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration@19.0.1.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6ca2cca7-e032-56a2-9d32-3a988f981149", "id": "CVE-2020-25689", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-25689 is a false positive for org.wildfly.core:wildfly-elytron-integration 19.0.1.Final-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration@19.0.1.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:95234d0d-2e5c-50b4-82e5-70af25cc50aa", "id": "CVE-2021-3503", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-3503 is a false positive for org.wildfly.core:wildfly-elytron-integration 19.0.1.Final-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration@19.0.1.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b7dd7015-c916-52e4-86ae-5367098f6513", "id": "CVE-2021-3536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-3536 affects version 19.0.1.Final-tuxcare.3 of org.wildfly.core:wildfly-elytron-integration." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration@19.0.1.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:373651d1-6d58-59f0-807e-6756b17cf559", "id": "CVE-2022-0866", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-0866 is a false positive for org.wildfly.core:wildfly-elytron-integration 19.0.1.Final-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration@19.0.1.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:01fa00ea-d7bf-5ffd-827c-6c943bb462af", "id": "CVE-2022-1278", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-1278 is a false positive for org.wildfly.core:wildfly-elytron-integration 19.0.1.Final-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration@19.0.1.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:40d8365d-5410-590d-8d8d-39967711ba77", "id": "CVE-2023-4061", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-4061 affects version 19.0.1.Final-tuxcare.3 of org.wildfly.core:wildfly-elytron-integration." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration@19.0.1.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:058f8dcb-9698-5de5-97b4-3d02ee048e2f", "id": "CVE-2024-4029", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-4029 affects version 19.0.1.Final-tuxcare.3 of org.wildfly.core:wildfly-elytron-integration." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration@19.0.1.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:11a44c92-4f2d-54fb-a24c-d23ea17cc064", "id": "CVE-2025-23367", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23367 is fixed in version 19.0.1.Final-tuxcare.3 of org.wildfly.core:wildfly-elytron-integration." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration@19.0.1.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:491c5b54-abb2-5673-80ad-16e8c5f9e3cb", "id": "CVE-2025-23368", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-23368 affects version 19.0.1.Final-tuxcare.3 of org.wildfly.core:wildfly-elytron-integration." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration@19.0.1.Final-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration@19.0.1.Final-tuxcare.3" } ] }