{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:ed2ab435-3872-522f-94b4-cb5d1f75c4d2", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration@19.0.1.Final-tuxcare.2", "type": "library", "group": "org.wildfly.core", "name": "wildfly-elytron-integration", "version": "19.0.1.Final-tuxcare.2", "purl": "pkg:maven/org.wildfly.core/wildfly-elytron-integration@19.0.1.Final-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:6e857299-506d-5106-bea7-fcb305e86fbd", "id": "CVE-2020-10740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-10740 affects version 19.0.1.Final-tuxcare.2 of org.wildfly.core:wildfly-elytron-integration." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:869ef993-3067-5081-a925-d154b2442566", "id": "CVE-2020-1719", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-1719 affects version 19.0.1.Final-tuxcare.2 of org.wildfly.core:wildfly-elytron-integration." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3edaace5-4191-5e36-be29-c8962e5aa39f", "id": "CVE-2020-25640", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-25640 affects version 19.0.1.Final-tuxcare.2 of org.wildfly.core:wildfly-elytron-integration." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a3a3df1e-8b42-535e-81d8-953aa99297ec", "id": "CVE-2020-25689", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-25689 is a false positive for org.wildfly.core:wildfly-elytron-integration 19.0.1.Final-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:17fcd20b-215a-5dbd-882d-16712be4d7af", "id": "CVE-2021-3503", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-3503 affects version 19.0.1.Final-tuxcare.2 of org.wildfly.core:wildfly-elytron-integration." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d1ecf755-b751-5064-9457-40a6ee038d67", "id": "CVE-2021-3536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-3536 affects version 19.0.1.Final-tuxcare.2 of org.wildfly.core:wildfly-elytron-integration." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3e33614a-532e-55b7-8b2f-fc50b5a18365", "id": "CVE-2022-0866", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-0866 affects version 19.0.1.Final-tuxcare.2 of org.wildfly.core:wildfly-elytron-integration." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:45f121c6-9980-55b1-96d6-a56a71978567", "id": "CVE-2022-1278", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-1278 is a false positive for org.wildfly.core:wildfly-elytron-integration 19.0.1.Final-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:aa7c15bb-f750-5aab-9b0a-b1922992e90e", "id": "CVE-2023-4061", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-4061 affects version 19.0.1.Final-tuxcare.2 of org.wildfly.core:wildfly-elytron-integration." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:353b9eda-cca0-5d16-a4a4-1c7898fec737", "id": "CVE-2024-4029", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-4029 affects version 19.0.1.Final-tuxcare.2 of org.wildfly.core:wildfly-elytron-integration." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f0b13d36-7fc6-51ba-ac4c-71295569023c", "id": "CVE-2025-23367", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23367 is fixed in version 19.0.1.Final-tuxcare.2 of org.wildfly.core:wildfly-elytron-integration." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f842f20a-31dd-5ac0-8cb4-d998cf7eb401", "id": "CVE-2025-23368", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-23368 affects version 19.0.1.Final-tuxcare.2 of org.wildfly.core:wildfly-elytron-integration." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration@19.0.1.Final-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration@19.0.1.Final-tuxcare.2" } ] }