{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:a9cfa0a3-56d4-5fc9-8325-44936cb82613", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.undertow/undertow-dist@2.3.10.Final-tuxcare.6", "type": "library", "group": "io.undertow", "name": "undertow-dist", "version": "2.3.10.Final-tuxcare.6", "purl": "pkg:maven/io.undertow/undertow-dist@2.3.10.Final-tuxcare.6" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:0bd4112b-8466-5df4-8eb2-420e0431a7f4", "id": "CVE-2016-6311", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2016-6311 is a false positive for io.undertow:undertow-dist 2.3.10.Final-tuxcare.6." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-dist@2.3.10.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:e0cb8a39-a547-58d3-aef7-c644c67a8b1c", "id": "CVE-2023-1973", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-1973 is fixed in version 2.3.10.Final-tuxcare.6 of io.undertow:undertow-dist." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-dist@2.3.10.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:ed3b92ac-4a10-5bad-8fa5-159aee84456f", "id": "CVE-2023-4639", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-4639 is fixed in version 2.3.10.Final-tuxcare.6 of io.undertow:undertow-dist." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-dist@2.3.10.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:307e3cd4-262b-5bbe-956b-90b9c79ed33a", "id": "CVE-2024-1459", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-1459 is fixed in version 2.3.10.Final-tuxcare.6 of io.undertow:undertow-dist." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-dist@2.3.10.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:2b3e5e3e-2b9b-5841-a58c-9ecc8f295e57", "id": "CVE-2024-1635", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-1635 is fixed in version 2.3.10.Final-tuxcare.6 of io.undertow:undertow-dist." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-dist@2.3.10.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:093d604b-8ffd-50bc-8f44-a4ea5173c6ef", "id": "CVE-2024-3653", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-3653 is fixed in version 2.3.10.Final-tuxcare.6 of io.undertow:undertow-dist." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-dist@2.3.10.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:d49384f2-71ba-5d96-8ab7-961574f9138a", "id": "CVE-2024-3884", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-3884 affects version 2.3.10.Final-tuxcare.6 of io.undertow:undertow-dist." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-dist@2.3.10.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:b0c38b5f-7d3c-59dc-92e0-ca04af9beb42", "id": "CVE-2024-4027", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-4027 is fixed in version 2.3.10.Final-tuxcare.6 of io.undertow:undertow-dist." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-dist@2.3.10.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:378bcad9-8669-5d6d-9ef9-fdb9bfc0da12", "id": "CVE-2024-4109", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2024-4109 is a false positive for io.undertow:undertow-dist 2.3.10.Final-tuxcare.6." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-dist@2.3.10.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:7dcf4b41-c055-5996-96fa-08001848c36e", "id": "CVE-2024-5971", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-5971 is fixed in version 2.3.10.Final-tuxcare.6 of io.undertow:undertow-dist." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-dist@2.3.10.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:0dff420a-ea5e-56c3-ad88-dcff1a30d83c", "id": "CVE-2024-6162", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-6162 is fixed in version 2.3.10.Final-tuxcare.6 of io.undertow:undertow-dist." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-dist@2.3.10.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:24ac96a7-5238-542a-95ea-8e53bb99c3bb", "id": "CVE-2024-7885", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-7885 is fixed in version 2.3.10.Final-tuxcare.6 of io.undertow:undertow-dist." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-dist@2.3.10.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:305c8031-470e-5e6b-8b03-49d6a5aeea9e", "id": "CVE-2025-12543", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-12543 is fixed in version 2.3.10.Final-tuxcare.6 of io.undertow:undertow-dist." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-dist@2.3.10.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:2ede32f7-8dfb-56af-aa21-4e1324a51ae0", "id": "CVE-2025-9784", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-9784 is fixed in version 2.3.10.Final-tuxcare.6 of io.undertow:undertow-dist." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-dist@2.3.10.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:7f52cfb0-a1a8-5014-936c-f233d913abe4", "id": "CVE-2026-28367", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-28367 affects version 2.3.10.Final-tuxcare.6 of io.undertow:undertow-dist." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-dist@2.3.10.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:00fb807d-7fa1-56f2-9e21-a820989f3e9a", "id": "CVE-2026-28368", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-28368 affects version 2.3.10.Final-tuxcare.6 of io.undertow:undertow-dist." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-dist@2.3.10.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:c9f272ec-0496-5413-aa8c-fc96883f5da6", "id": "CVE-2026-28369", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-28369 affects version 2.3.10.Final-tuxcare.6 of io.undertow:undertow-dist." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-dist@2.3.10.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:f9a60b42-5bf9-5250-9b73-0d7cc7a3cf44", "id": "CVE-2026-3260", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-3260 affects version 2.3.10.Final-tuxcare.6 of io.undertow:undertow-dist." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-dist@2.3.10.Final-tuxcare.6" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.undertow/undertow-dist@2.3.10.Final-tuxcare.6" } ] }