{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:3038ac7f-41ec-5d4e-8d44-6fd662000663", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.undertow/undertow-examples@2.3.18.Final-tuxcare.1", "type": "library", "group": "io.undertow", "name": "undertow-examples", "version": "2.3.18.Final-tuxcare.1", "purl": "pkg:maven/io.undertow/undertow-examples@2.3.18.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:3d912267-8b84-5a29-944b-eb821cc9bf1e", "id": "CVE-2016-6311", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6311 affects version 2.3.18.Final-tuxcare.1 of io.undertow:undertow-examples." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-examples@2.3.18.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1fe58746-11ed-517c-96e7-bb75afa5deb3", "id": "CVE-2024-3884", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-3884 is fixed in version 2.3.18.Final-tuxcare.1 of io.undertow:undertow-examples." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-examples@2.3.18.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bffa324d-fa00-5f65-bf55-1fbdb01f7fbc", "id": "CVE-2024-4027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-4027 affects version 2.3.18.Final-tuxcare.1 of io.undertow:undertow-examples." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-examples@2.3.18.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3badbff8-36e9-57a9-968e-3385f814c3e1", "id": "CVE-2024-4109", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2024-4109 is a false positive for io.undertow:undertow-examples 2.3.18.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-examples@2.3.18.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6a480e7e-e8bb-58dd-8815-c060c2bc529d", "id": "CVE-2025-12543", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-12543 affects version 2.3.18.Final-tuxcare.1 of io.undertow:undertow-examples." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-examples@2.3.18.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1b34174e-3a34-555f-8269-a8331ff4fe09", "id": "CVE-2025-9784", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-9784 affects version 2.3.18.Final-tuxcare.1 of io.undertow:undertow-examples." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-examples@2.3.18.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1b29c430-193c-5314-bdbe-44191ccf1ec3", "id": "CVE-2026-28367", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-28367 affects version 2.3.18.Final-tuxcare.1 of io.undertow:undertow-examples." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-examples@2.3.18.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:26f458c9-6865-5402-996f-904335a83e35", "id": "CVE-2026-28368", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-28368 affects version 2.3.18.Final-tuxcare.1 of io.undertow:undertow-examples." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-examples@2.3.18.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:66f99e26-99ff-56e9-bedc-8b1d4c607578", "id": "CVE-2026-28369", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-28369 affects version 2.3.18.Final-tuxcare.1 of io.undertow:undertow-examples." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-examples@2.3.18.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:80e7b64f-b18c-5add-883e-13aa97f3a3cd", "id": "CVE-2026-3260", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-3260 is fixed in version 2.3.18.Final-tuxcare.1 of io.undertow:undertow-examples." }, "affects": [ { "ref": "pkg:maven/io.undertow/undertow-examples@2.3.18.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.undertow/undertow-examples@2.3.18.Final-tuxcare.1" } ] }