{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:2fb159a2-ed8c-5c35-a6bf-1f1c7360d5b9", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.undertow/undertow-parent@2.3.10.Final-tuxcare.6", "type": "library", "group": "io.undertow", "name": "undertow-parent", "version": "2.3.10.Final-tuxcare.6", "purl": "pkg:maven/io.undertow/undertow-parent@2.3.10.Final-tuxcare.6" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:a24ff126-34d6-54cd-81d8-c3770481a5bc", "id": "CVE-2016-6311", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2016-6311 is a false positive for io.undertow:undertow-parent 2.3.10.Final-tuxcare.6." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-parent@2.3.10.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:186ff665-10a2-569a-aab8-1cc249536ff1", "id": "CVE-2023-1973", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-1973 is fixed in version 2.3.10.Final-tuxcare.6 of io.undertow:undertow-parent." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-parent@2.3.10.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:28cab812-8934-5c84-9734-45c33d4c233a", "id": "CVE-2023-4639", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-4639 is fixed in version 2.3.10.Final-tuxcare.6 of io.undertow:undertow-parent." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-parent@2.3.10.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:69e8576d-202e-5452-961f-1561fb6b6387", "id": "CVE-2024-1459", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-1459 is fixed in version 2.3.10.Final-tuxcare.6 of io.undertow:undertow-parent." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-parent@2.3.10.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:ea509324-7b61-59b0-b581-a4ccc0269f98", "id": "CVE-2024-1635", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-1635 is fixed in version 2.3.10.Final-tuxcare.6 of io.undertow:undertow-parent." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-parent@2.3.10.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:da7a5129-05fd-5380-b097-d2ad7d6c3fc3", "id": "CVE-2024-3653", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-3653 is fixed in version 2.3.10.Final-tuxcare.6 of io.undertow:undertow-parent." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-parent@2.3.10.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:b1561bfe-e073-53ed-95d8-f1e897cddfe8", "id": "CVE-2024-3884", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-3884 affects version 2.3.10.Final-tuxcare.6 of io.undertow:undertow-parent." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-parent@2.3.10.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:e3a3efe4-c01c-559e-afda-a27613f60260", "id": "CVE-2024-4027", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-4027 is fixed in version 2.3.10.Final-tuxcare.6 of io.undertow:undertow-parent." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-parent@2.3.10.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:3e6c10e1-f7c0-5352-9219-d10dd523c6ea", "id": "CVE-2024-4109", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2024-4109 is a false positive for io.undertow:undertow-parent 2.3.10.Final-tuxcare.6." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-parent@2.3.10.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:2e58828a-6930-5710-b632-85d2e10ac5f3", "id": "CVE-2024-5971", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-5971 is fixed in version 2.3.10.Final-tuxcare.6 of io.undertow:undertow-parent." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-parent@2.3.10.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:18001fa4-2a80-5362-886d-58016d75f5f1", "id": "CVE-2024-6162", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-6162 is fixed in version 2.3.10.Final-tuxcare.6 of io.undertow:undertow-parent." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-parent@2.3.10.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:8004ee6b-84d2-5b28-83fd-012456469a1c", "id": "CVE-2024-7885", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-7885 is fixed in version 2.3.10.Final-tuxcare.6 of io.undertow:undertow-parent." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-parent@2.3.10.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:a228af5e-1d3b-5a7a-81fa-60fcb0f4b7a9", "id": "CVE-2025-12543", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-12543 is fixed in version 2.3.10.Final-tuxcare.6 of io.undertow:undertow-parent." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-parent@2.3.10.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:1d0162c3-a5ed-56f0-9232-4e5f243096fa", "id": "CVE-2025-9784", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-9784 is fixed in version 2.3.10.Final-tuxcare.6 of io.undertow:undertow-parent." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-parent@2.3.10.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:c5f08b44-45cb-53c1-b1c8-21cd49bb3614", "id": "CVE-2026-28367", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-28367 affects version 2.3.10.Final-tuxcare.6 of io.undertow:undertow-parent." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-parent@2.3.10.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:981caf0d-af9b-5824-825f-7d562a29b8e6", "id": "CVE-2026-28368", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-28368 affects version 2.3.10.Final-tuxcare.6 of io.undertow:undertow-parent." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-parent@2.3.10.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:e75b1611-8a98-5b89-8750-8c45f1ffcbf4", "id": "CVE-2026-28369", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-28369 affects version 2.3.10.Final-tuxcare.6 of io.undertow:undertow-parent." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-parent@2.3.10.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:1bf6c188-f767-5aeb-b75e-6afb1933b32b", "id": "CVE-2026-3260", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-3260 affects version 2.3.10.Final-tuxcare.6 of io.undertow:undertow-parent." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-parent@2.3.10.Final-tuxcare.6" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.undertow/undertow-parent@2.3.10.Final-tuxcare.6" } ] }