{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:097bc967-76c7-5ee9-88f5-055a1607b685", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.wildfly.core/wildfly-domain-http-interface@19.0.1.Final-tuxcare.1", "type": "library", "group": "org.wildfly.core", "name": "wildfly-domain-http-interface", "version": "19.0.1.Final-tuxcare.1", "purl": "pkg:maven/org.wildfly.core/wildfly-domain-http-interface@19.0.1.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:01ab6d34-fbe6-51dd-b3b0-25634d06d66d", "id": "CVE-2020-10740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-10740 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-domain-http-interface." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-domain-http-interface@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1a726ecd-f9f1-52c9-8856-67d641ad6ba0", "id": "CVE-2020-1719", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-1719 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-domain-http-interface." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-domain-http-interface@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f863e3ad-87ea-5310-ae28-626d91ce4e8c", "id": "CVE-2020-25640", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-25640 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-domain-http-interface." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-domain-http-interface@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5b9c546f-0047-5551-a125-34db73547b90", "id": "CVE-2020-25689", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-25689 is a false positive for org.wildfly.core:wildfly-domain-http-interface 19.0.1.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-domain-http-interface@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a84c7ff8-f81e-53ed-bd18-0aebb8c3fc93", "id": "CVE-2021-3503", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-3503 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-domain-http-interface." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-domain-http-interface@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:98e06843-12cb-55ba-8c4c-5decfc81e65f", "id": "CVE-2021-3536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-3536 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-domain-http-interface." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-domain-http-interface@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b5331145-fb1a-5814-8f8a-ecb2cc403790", "id": "CVE-2022-0866", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-0866 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-domain-http-interface." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-domain-http-interface@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f30d3bbe-c70e-5b09-966c-32f71e7afb38", "id": "CVE-2022-1278", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-1278 is a false positive for org.wildfly.core:wildfly-domain-http-interface 19.0.1.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-domain-http-interface@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a79a4695-ff9e-5787-ab21-eb3a8941aea6", "id": "CVE-2023-4061", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-4061 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-domain-http-interface." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-domain-http-interface@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:12bd531c-af7d-52b6-b897-508c4c2963b0", "id": "CVE-2024-4029", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-4029 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-domain-http-interface." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-domain-http-interface@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c5830b75-f856-5e87-9868-b21ecda035cd", "id": "CVE-2025-23367", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23367 is fixed in version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-domain-http-interface." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-domain-http-interface@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cffce363-71b2-5e8c-b14f-fc0feac4b34e", "id": "CVE-2025-23368", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-23368 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-domain-http-interface." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-domain-http-interface@19.0.1.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-domain-http-interface@19.0.1.Final-tuxcare.1" } ] }