{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:f2da1699-e3e5-5c77-bda0-a7f15dac3b6a", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.undertow/undertow-benchmarks@2.2.33.Final-tuxcare.5", "type": "library", "group": "io.undertow", "name": "undertow-benchmarks", "version": "2.2.33.Final-tuxcare.5", "purl": "pkg:maven/io.undertow/undertow-benchmarks@2.2.33.Final-tuxcare.5" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:3d742949-60f0-5f98-9c5f-8cba3540a6ab", "id": "CVE-2024-3653", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-3653 affects version 2.2.33.Final-tuxcare.5 of io.undertow:undertow-benchmarks." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-benchmarks@2.2.33.Final-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:3469ee35-3175-51c3-b66b-be5f0654944f", "id": "CVE-2024-3884", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-3884 affects version 2.2.33.Final-tuxcare.5 of io.undertow:undertow-benchmarks." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-benchmarks@2.2.33.Final-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:d5933c53-7753-5257-9a1f-c4ab2a9e528a", "id": "CVE-2024-4027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-4027 affects version 2.2.33.Final-tuxcare.5 of io.undertow:undertow-benchmarks." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-benchmarks@2.2.33.Final-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:4412e18d-0420-5ccf-a425-cb4ae556d68b", "id": "CVE-2024-4109", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2024-4109 is a false positive for io.undertow:undertow-benchmarks 2.2.33.Final-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-benchmarks@2.2.33.Final-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:02608589-3279-51a2-aaf1-7ab04642da46", "id": "CVE-2024-5971", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-5971 is fixed in version 2.2.33.Final-tuxcare.5 of io.undertow:undertow-benchmarks." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-benchmarks@2.2.33.Final-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:0cd5bbd6-25cb-590b-9782-be86a4a42df7", "id": "CVE-2024-7885", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-7885 is fixed in version 2.2.33.Final-tuxcare.5 of io.undertow:undertow-benchmarks." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-benchmarks@2.2.33.Final-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:1f39b2dd-379a-5e4b-86da-eb422692769a", "id": "CVE-2025-12543", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-12543 is fixed in version 2.2.33.Final-tuxcare.5 of io.undertow:undertow-benchmarks." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-benchmarks@2.2.33.Final-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:490d3086-eeb4-568c-9362-103352f13c54", "id": "CVE-2025-9784", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-9784 affects version 2.2.33.Final-tuxcare.5 of io.undertow:undertow-benchmarks." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-benchmarks@2.2.33.Final-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:db2b0ab9-e121-5d0d-a087-9b85d6ce970d", "id": "CVE-2026-28367", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-28367 affects version 2.2.33.Final-tuxcare.5 of io.undertow:undertow-benchmarks." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-benchmarks@2.2.33.Final-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:a4e6247e-9ee8-5df4-bb33-5d8e25bf999e", "id": "CVE-2026-28368", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-28368 affects version 2.2.33.Final-tuxcare.5 of io.undertow:undertow-benchmarks." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-benchmarks@2.2.33.Final-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:3c09ec72-4de3-5f8d-88de-67dbb7e1ea33", "id": "CVE-2026-28369", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-28369 affects version 2.2.33.Final-tuxcare.5 of io.undertow:undertow-benchmarks." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-benchmarks@2.2.33.Final-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:aa5d4ca6-7085-55bc-8313-0485b69b53bc", "id": "CVE-2026-3260", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-3260 is fixed in version 2.2.33.Final-tuxcare.5 of io.undertow:undertow-benchmarks." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-benchmarks@2.2.33.Final-tuxcare.5" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.undertow/undertow-benchmarks@2.2.33.Final-tuxcare.5" } ] }