{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:c5894277-9d89-553e-886e-120c33846767", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.wildfly.core/wildfly-domain-http@19.0.1.Final-tuxcare.1", "type": "library", "group": "org.wildfly.core", "name": "wildfly-domain-http", "version": "19.0.1.Final-tuxcare.1", "purl": "pkg:maven/org.wildfly.core/wildfly-domain-http@19.0.1.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:d44bafe4-dcb5-5898-88e6-f6971a00f60d", "id": "CVE-2020-10740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-10740 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-domain-http." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-domain-http@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:04dc67e0-0e5c-595d-bd79-329fe958bcbb", "id": "CVE-2020-1719", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-1719 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-domain-http." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-domain-http@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e545e747-5717-5257-8271-7fcfb2f366fb", "id": "CVE-2020-25640", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-25640 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-domain-http." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-domain-http@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4f3b3249-598c-54d4-9398-a6dbe7643db0", "id": "CVE-2020-25689", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-25689 is a false positive for org.wildfly.core:wildfly-domain-http 19.0.1.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-domain-http@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:502d5f21-115d-5bba-a156-ad3da1c5c05a", "id": "CVE-2021-3503", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-3503 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-domain-http." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-domain-http@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:924515e3-f281-5737-995c-fd52b43214fb", "id": "CVE-2021-3536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-3536 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-domain-http." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-domain-http@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ae60fb3f-6139-5af1-9711-2edcd5251989", "id": "CVE-2022-0866", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-0866 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-domain-http." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-domain-http@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b7d96e3f-2613-5b76-980d-4520dfa35ea6", "id": "CVE-2022-1278", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-1278 is a false positive for org.wildfly.core:wildfly-domain-http 19.0.1.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-domain-http@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3ecfe001-7f99-5e62-8287-6387306ff25e", "id": "CVE-2023-4061", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-4061 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-domain-http." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-domain-http@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1c250642-107f-5c67-8cf8-e6c8e00b790f", "id": "CVE-2024-4029", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-4029 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-domain-http." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-domain-http@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bab3e05b-3d19-5587-8f0c-9877f18fa849", "id": "CVE-2025-23367", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23367 is fixed in version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-domain-http." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-domain-http@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e9be983e-d47e-5ccd-b655-c7f8cbc32039", "id": "CVE-2025-23368", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-23368 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-domain-http." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-domain-http@19.0.1.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-domain-http@19.0.1.Final-tuxcare.1" } ] }