{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:93783714-c571-5c07-97bc-8ffb35e67f3c", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.wildfly.core/wildfly-io-bom@19.0.1.Final-tuxcare.2", "type": "library", "group": "org.wildfly.core", "name": "wildfly-io-bom", "version": "19.0.1.Final-tuxcare.2", "purl": "pkg:maven/org.wildfly.core/wildfly-io-bom@19.0.1.Final-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:25781dbe-40ae-5cf3-a357-e61e955a8560", "id": "CVE-2020-10740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-10740 affects version 19.0.1.Final-tuxcare.2 of org.wildfly.core:wildfly-io-bom." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-io-bom@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:14fe845a-14c1-54e0-9822-0d3cfc0e5187", "id": "CVE-2020-1719", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-1719 affects version 19.0.1.Final-tuxcare.2 of org.wildfly.core:wildfly-io-bom." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-io-bom@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a11ed3b5-6321-516d-aa3f-e2cdc8914b31", "id": "CVE-2020-25640", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-25640 affects version 19.0.1.Final-tuxcare.2 of org.wildfly.core:wildfly-io-bom." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-io-bom@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b5b6ed3e-6603-5f7c-a363-4531e3828902", "id": "CVE-2020-25689", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-25689 is a false positive for org.wildfly.core:wildfly-io-bom 19.0.1.Final-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-io-bom@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:dc93fe36-a5fe-588b-b227-2592f6ed3188", "id": "CVE-2021-3503", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-3503 affects version 19.0.1.Final-tuxcare.2 of org.wildfly.core:wildfly-io-bom." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-io-bom@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:869dd6b9-4525-57fd-9595-6a6ad12d5e18", "id": "CVE-2021-3536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-3536 affects version 19.0.1.Final-tuxcare.2 of org.wildfly.core:wildfly-io-bom." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-io-bom@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:00625795-b9c3-563a-bccc-f009bd2931b1", "id": "CVE-2022-0866", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-0866 affects version 19.0.1.Final-tuxcare.2 of org.wildfly.core:wildfly-io-bom." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-io-bom@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:78f58a6d-b212-52c6-9611-76e962dffa0b", "id": "CVE-2022-1278", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-1278 is a false positive for org.wildfly.core:wildfly-io-bom 19.0.1.Final-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-io-bom@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:511b1369-c624-5829-bcef-7612a321c950", "id": "CVE-2023-4061", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-4061 affects version 19.0.1.Final-tuxcare.2 of org.wildfly.core:wildfly-io-bom." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-io-bom@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1ae564e8-f73e-5dc9-938c-06918ab94940", "id": "CVE-2024-4029", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-4029 affects version 19.0.1.Final-tuxcare.2 of org.wildfly.core:wildfly-io-bom." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-io-bom@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d786a5db-09b1-5857-be5b-779452e7484f", "id": "CVE-2025-23367", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23367 is fixed in version 19.0.1.Final-tuxcare.2 of org.wildfly.core:wildfly-io-bom." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-io-bom@19.0.1.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1da7d572-5597-5c31-950b-63ab87e62d7a", "id": "CVE-2025-23368", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-23368 affects version 19.0.1.Final-tuxcare.2 of org.wildfly.core:wildfly-io-bom." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-io-bom@19.0.1.Final-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-io-bom@19.0.1.Final-tuxcare.2" } ] }