{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:c1d14e88-851b-5975-b833-fc09e0ee3e11", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.wildfly.core/wildfly-elytron-tool-wrapper@19.0.1.Final-tuxcare.2", "type": "library", "group": "org.wildfly.core", "name": "wildfly-elytron-tool-wrapper", "version": "19.0.1.Final-tuxcare.2", "purl": "pkg:maven/org.wildfly.core/wildfly-elytron-tool-wrapper@19.0.1.Final-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:40b55e13-371c-5281-8a52-8b39dbfd9cea", "id": "CVE-2020-10740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-10740 affects version 19.0.1.Final-tuxcare.2 of org.wildfly.core:wildfly-elytron-tool-wrapper." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-tool-wrapper@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1b8dd3ed-0ced-54bd-8b60-c4951ede110e", "id": "CVE-2020-1719", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-1719 affects version 19.0.1.Final-tuxcare.2 of org.wildfly.core:wildfly-elytron-tool-wrapper." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-tool-wrapper@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c1e05a5c-4e22-5e31-89dd-1267daaf13d7", "id": "CVE-2020-25640", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-25640 affects version 19.0.1.Final-tuxcare.2 of org.wildfly.core:wildfly-elytron-tool-wrapper." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-tool-wrapper@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c1574a69-aec4-5827-99e6-22785aeb75d7", "id": "CVE-2020-25689", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-25689 is a false positive for org.wildfly.core:wildfly-elytron-tool-wrapper 19.0.1.Final-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-tool-wrapper@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:903baaf5-88f8-518c-bb47-4a8976cff3d1", "id": "CVE-2021-3503", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-3503 affects version 19.0.1.Final-tuxcare.2 of org.wildfly.core:wildfly-elytron-tool-wrapper." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-tool-wrapper@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c3174016-d1a7-5818-ae59-14cab5cac15f", "id": "CVE-2021-3536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-3536 affects version 19.0.1.Final-tuxcare.2 of org.wildfly.core:wildfly-elytron-tool-wrapper." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-tool-wrapper@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b526fe8c-5f09-53c7-9c85-21860524fb4d", "id": "CVE-2022-0866", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-0866 affects version 19.0.1.Final-tuxcare.2 of org.wildfly.core:wildfly-elytron-tool-wrapper." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-tool-wrapper@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:54e25966-1691-5425-b2be-3e02f4d811b6", "id": "CVE-2022-1278", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-1278 is a false positive for org.wildfly.core:wildfly-elytron-tool-wrapper 19.0.1.Final-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-tool-wrapper@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e02c43cd-9b32-5093-9cd4-d6bf093951a4", "id": "CVE-2023-4061", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-4061 affects version 19.0.1.Final-tuxcare.2 of org.wildfly.core:wildfly-elytron-tool-wrapper." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-tool-wrapper@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:aaaf9c08-3204-59d4-b548-1a5631379d56", "id": "CVE-2024-4029", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-4029 affects version 19.0.1.Final-tuxcare.2 of org.wildfly.core:wildfly-elytron-tool-wrapper." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-tool-wrapper@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:29c18679-3a5d-5251-b2bc-7be2a351c266", "id": "CVE-2025-23367", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23367 is fixed in version 19.0.1.Final-tuxcare.2 of org.wildfly.core:wildfly-elytron-tool-wrapper." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-tool-wrapper@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:dc534257-16ab-5a28-a67e-244aac506bce", "id": "CVE-2025-23368", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-23368 affects version 19.0.1.Final-tuxcare.2 of org.wildfly.core:wildfly-elytron-tool-wrapper." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-tool-wrapper@19.0.1.Final-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-tool-wrapper@19.0.1.Final-tuxcare.2" } ] }