{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:edce3304-270a-5209-86bc-f9e5a4274958", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.wildfly.core/wildfly-elytron-tool-wrapper@19.0.1.Final-tuxcare.1", "type": "library", "group": "org.wildfly.core", "name": "wildfly-elytron-tool-wrapper", "version": "19.0.1.Final-tuxcare.1", "purl": "pkg:maven/org.wildfly.core/wildfly-elytron-tool-wrapper@19.0.1.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:3e7a16de-1298-5f9b-974a-79806c57d0e0", "id": "CVE-2020-10740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-10740 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-elytron-tool-wrapper." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-tool-wrapper@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ea35f557-0798-5f8e-bea9-b599bb06f533", "id": "CVE-2020-1719", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-1719 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-elytron-tool-wrapper." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-tool-wrapper@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:349762a5-103d-50bf-a96a-a210df46b0e3", "id": "CVE-2020-25640", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-25640 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-elytron-tool-wrapper." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-tool-wrapper@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:47c4741e-a60b-58dd-a0d4-a5f71fc18c99", "id": "CVE-2020-25689", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-25689 is a false positive for org.wildfly.core:wildfly-elytron-tool-wrapper 19.0.1.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-tool-wrapper@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ab6f3879-ce63-539d-83ec-1557d2f6b613", "id": "CVE-2021-3503", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-3503 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-elytron-tool-wrapper." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-tool-wrapper@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e4cde6f2-251c-59f5-af3f-5851c8e57d04", "id": "CVE-2021-3536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-3536 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-elytron-tool-wrapper." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-tool-wrapper@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:acaf06a4-7de2-5308-9755-8d4e5e44acd0", "id": "CVE-2022-0866", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-0866 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-elytron-tool-wrapper." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-tool-wrapper@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:534478bc-4031-5b69-a7bc-6106f568eaea", "id": "CVE-2022-1278", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-1278 is a false positive for org.wildfly.core:wildfly-elytron-tool-wrapper 19.0.1.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-tool-wrapper@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0f99166d-5413-5ff8-be1b-05d1cd0fea83", "id": "CVE-2023-4061", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-4061 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-elytron-tool-wrapper." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-tool-wrapper@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:87c64cb7-bb43-52a4-9c24-817482294748", "id": "CVE-2024-4029", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-4029 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-elytron-tool-wrapper." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-tool-wrapper@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4feef94e-1483-5787-83d4-c85ef244e15a", "id": "CVE-2025-23367", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23367 is fixed in version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-elytron-tool-wrapper." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-tool-wrapper@19.0.1.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bb2dc4bd-7e3e-51af-8f83-7cdd0dd23626", "id": "CVE-2025-23368", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-23368 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-elytron-tool-wrapper." }, "affects": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-tool-wrapper@19.0.1.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.wildfly.core/wildfly-elytron-tool-wrapper@19.0.1.Final-tuxcare.1" } ] }