{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:79a95a2f-59c5-5c80-897c-280fb77cf2b0", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration-legacy-namespace@19.0.1.Final-tuxcare.1", "type": "library", "group": "org.wildfly.core", "name": "wildfly-elytron-integration-legacy-namespace", "version": "19.0.1.Final-tuxcare.1", "purl": "pkg:maven/org.wildfly.core/wildfly-elytron-integration-legacy-namespace@19.0.1.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:e95682f8-da02-59b2-b80b-beb64dd5f908", "id": "CVE-2020-10740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-10740 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-elytron-integration-legacy-namespace." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration-legacy-namespace@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5dd1df9f-3ea7-595e-9a9c-f9e5b21012d0", "id": "CVE-2020-1719", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-1719 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-elytron-integration-legacy-namespace." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration-legacy-namespace@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1a6ee1d9-5585-5e34-b63d-3f43f2d089c6", "id": "CVE-2020-25640", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-25640 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-elytron-integration-legacy-namespace." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration-legacy-namespace@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e2245480-ece5-5538-8435-1e0b585629b5", "id": "CVE-2020-25689", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-25689 is a false positive for org.wildfly.core:wildfly-elytron-integration-legacy-namespace 19.0.1.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration-legacy-namespace@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dd383546-72d2-5e05-a8a5-eab3101d8719", "id": "CVE-2021-3503", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-3503 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-elytron-integration-legacy-namespace." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration-legacy-namespace@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:677a3525-c806-5bd7-a837-7d76f39f1d00", "id": "CVE-2021-3536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-3536 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-elytron-integration-legacy-namespace." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration-legacy-namespace@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:58f10e8d-75a8-5d42-a535-6670f3a1ad09", "id": "CVE-2022-0866", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-0866 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-elytron-integration-legacy-namespace." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration-legacy-namespace@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:98d6fec1-9c6f-59ff-bfed-635d1e37a4a2", "id": "CVE-2022-1278", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-1278 is a false positive for org.wildfly.core:wildfly-elytron-integration-legacy-namespace 19.0.1.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration-legacy-namespace@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c58efdd4-7a6a-58a2-84be-fc5d2f6bffe2", "id": "CVE-2023-4061", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-4061 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-elytron-integration-legacy-namespace." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration-legacy-namespace@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4f2e9e5a-52ab-5738-86fb-59507d4446b5", "id": "CVE-2024-4029", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-4029 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-elytron-integration-legacy-namespace." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration-legacy-namespace@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d8e0a629-cff1-55df-abae-7f8083e55797", "id": "CVE-2025-23367", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23367 is fixed in version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-elytron-integration-legacy-namespace." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration-legacy-namespace@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cd9a1ddb-5d66-5989-a9da-0bbb1de3a4e3", "id": "CVE-2025-23368", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-23368 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-elytron-integration-legacy-namespace." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration-legacy-namespace@19.0.1.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration-legacy-namespace@19.0.1.Final-tuxcare.1" } ] }