{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:96d0c830-4884-51e3-af14-5bcb586e7814", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.wildfly.core/wildfly-domain-http@19.0.1.Final-tuxcare.2", "type": "library", "group": "org.wildfly.core", "name": "wildfly-domain-http", "version": "19.0.1.Final-tuxcare.2", "purl": "pkg:maven/org.wildfly.core/wildfly-domain-http@19.0.1.Final-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:1a9ed5a4-c8c4-55e8-ae20-4c0a5bdb821c", "id": "CVE-2020-10740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-10740 affects version 19.0.1.Final-tuxcare.2 of org.wildfly.core:wildfly-domain-http." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-domain-http@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9f2de298-d47f-58e5-8546-336389ea14f4", "id": "CVE-2020-1719", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-1719 affects version 19.0.1.Final-tuxcare.2 of org.wildfly.core:wildfly-domain-http." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-domain-http@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bf9773fb-8a04-5e82-8aa6-991a5a838a68", "id": "CVE-2020-25640", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-25640 affects version 19.0.1.Final-tuxcare.2 of org.wildfly.core:wildfly-domain-http." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-domain-http@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:68879c77-b30c-56c8-a230-ba254eebe527", "id": "CVE-2020-25689", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-25689 is a false positive for org.wildfly.core:wildfly-domain-http 19.0.1.Final-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-domain-http@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5f5c54b5-dd30-5c20-a269-5518e7462b7c", "id": "CVE-2021-3503", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-3503 affects version 19.0.1.Final-tuxcare.2 of org.wildfly.core:wildfly-domain-http." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-domain-http@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:610a3f61-2152-52e3-a93b-47a7a1bacd46", "id": "CVE-2021-3536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-3536 affects version 19.0.1.Final-tuxcare.2 of org.wildfly.core:wildfly-domain-http." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-domain-http@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ce5a091a-9e0d-5797-821b-b66135d32a90", "id": "CVE-2022-0866", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-0866 affects version 19.0.1.Final-tuxcare.2 of org.wildfly.core:wildfly-domain-http." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-domain-http@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f2ce9ee9-39a7-5a2e-b5c9-b27d66a31255", "id": "CVE-2022-1278", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-1278 is a false positive for org.wildfly.core:wildfly-domain-http 19.0.1.Final-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-domain-http@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:141db1f7-7543-5446-b72a-e22877768157", "id": "CVE-2023-4061", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-4061 affects version 19.0.1.Final-tuxcare.2 of org.wildfly.core:wildfly-domain-http." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-domain-http@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:63573468-9319-5d1f-b558-e87693cc5f6f", "id": "CVE-2024-4029", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-4029 affects version 19.0.1.Final-tuxcare.2 of org.wildfly.core:wildfly-domain-http." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-domain-http@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3a99ca31-4753-56dd-ace2-345307c3595b", "id": "CVE-2025-23367", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23367 is fixed in version 19.0.1.Final-tuxcare.2 of org.wildfly.core:wildfly-domain-http." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-domain-http@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f0323c7c-5361-504b-8572-dbed7e327b46", "id": "CVE-2025-23368", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-23368 affects version 19.0.1.Final-tuxcare.2 of org.wildfly.core:wildfly-domain-http." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-domain-http@19.0.1.Final-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-domain-http@19.0.1.Final-tuxcare.2" } ] }