{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:fa59689b-dded-55b1-8d26-d7269b684bf8", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration@19.0.1.Final-tuxcare.1", "type": "library", "group": "org.wildfly.core", "name": "wildfly-elytron-integration", "version": "19.0.1.Final-tuxcare.1", "purl": "pkg:maven/org.wildfly.core/wildfly-elytron-integration@19.0.1.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:3b38efee-efe8-55f1-8174-6150542173ad", "id": "CVE-2020-10740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-10740 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-elytron-integration." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f1af0e56-0310-52ca-a13c-4ddf6a884ab9", "id": "CVE-2020-1719", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-1719 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-elytron-integration." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8adeb788-5ddb-54ac-9770-6966e7e172e7", "id": "CVE-2020-25640", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-25640 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-elytron-integration." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a501d216-4271-5afa-84de-7148ff4b7327", "id": "CVE-2020-25689", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-25689 is a false positive for org.wildfly.core:wildfly-elytron-integration 19.0.1.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:218fa482-8582-5b66-b511-ae4fc8d7b791", "id": "CVE-2021-3503", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-3503 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-elytron-integration." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2d3aac57-726f-51bf-bd67-4a3a2f571597", "id": "CVE-2021-3536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-3536 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-elytron-integration." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ca40b4d4-dc03-5b01-8511-f301bd2044ad", "id": "CVE-2022-0866", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-0866 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-elytron-integration." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:03df6707-3041-56b8-b5e5-f872260cb6b6", "id": "CVE-2022-1278", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-1278 is a false positive for org.wildfly.core:wildfly-elytron-integration 19.0.1.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:09812638-b640-561a-9de3-2f5744548e76", "id": "CVE-2023-4061", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-4061 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-elytron-integration." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:be007048-d4c3-5428-83b3-76262451eef7", "id": "CVE-2024-4029", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-4029 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-elytron-integration." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b1c26286-3386-5cb9-af80-6f6cb4b840bd", "id": "CVE-2025-23367", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23367 is fixed in version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-elytron-integration." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ec4cce26-56cd-5bf7-afcb-0e985cf81acb", "id": "CVE-2025-23368", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-23368 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-elytron-integration." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration@19.0.1.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-integration@19.0.1.Final-tuxcare.1" } ] }