{
  "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json",
  "bomFormat": "CycloneDX",
  "specVersion": "1.6",
  "serialNumber": "urn:uuid:81949877-3ce0-5097-a95e-626f17c22fea",
  "version": 1,
  "metadata": {
    "tools": [
      {
        "name": "tuxcare-vex-generator",
        "version": "1.0.0"
      }
    ]
  },
  "components": [
    {
      "bom-ref": "pkg:maven/org.wildfly.core/wildfly-jar-runtime@19.0.1.Final-tuxcare.1",
      "type": "library",
      "group": "org.wildfly.core",
      "name": "wildfly-jar-runtime",
      "version": "19.0.1.Final-tuxcare.1",
      "purl": "pkg:maven/org.wildfly.core/wildfly-jar-runtime@19.0.1.Final-tuxcare.1"
    }
  ],
  "vulnerabilities": [
    {
      "bom-ref": "urn:uuid:de463584-6232-540a-8ae7-e193370912a4",
      "id": "CVE-2020-10740",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2020-10740 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-jar-runtime."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.wildfly.core/wildfly-jar-runtime@19.0.1.Final-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:eca76d8d-b05d-5c72-93f2-de9c7e8f9a60",
      "id": "CVE-2020-1719",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2020-1719 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-jar-runtime."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.wildfly.core/wildfly-jar-runtime@19.0.1.Final-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:ee1f956c-284c-5c75-b89a-7be1063b8ee4",
      "id": "CVE-2020-25640",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2020-25640 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-jar-runtime."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.wildfly.core/wildfly-jar-runtime@19.0.1.Final-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:7709305f-4a32-5398-a440-1216d57fd018",
      "id": "CVE-2020-25689",
      "analysis": {
        "state": "false_positive",
        "detail": "Vulnerability CVE-2020-25689 is a false positive for org.wildfly.core:wildfly-jar-runtime 19.0.1.Final-tuxcare.1."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.wildfly.core/wildfly-jar-runtime@19.0.1.Final-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:37693b63-70bb-5e0a-b849-2cd6ab286f03",
      "id": "CVE-2021-3503",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2021-3503 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-jar-runtime."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.wildfly.core/wildfly-jar-runtime@19.0.1.Final-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:64165eba-d638-5208-b476-f90dc5c3fc03",
      "id": "CVE-2021-3536",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2021-3536 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-jar-runtime."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.wildfly.core/wildfly-jar-runtime@19.0.1.Final-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:73e5c4ea-9f2b-5301-a443-cfc8d9311fa4",
      "id": "CVE-2022-0866",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2022-0866 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-jar-runtime."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.wildfly.core/wildfly-jar-runtime@19.0.1.Final-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:814e546a-c21f-5054-8164-6cb5b9758e5d",
      "id": "CVE-2022-1278",
      "analysis": {
        "state": "false_positive",
        "detail": "Vulnerability CVE-2022-1278 is a false positive for org.wildfly.core:wildfly-jar-runtime 19.0.1.Final-tuxcare.1."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.wildfly.core/wildfly-jar-runtime@19.0.1.Final-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:4d728dd3-5dc0-5394-aedc-0492f5f94463",
      "id": "CVE-2023-4061",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2023-4061 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-jar-runtime."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.wildfly.core/wildfly-jar-runtime@19.0.1.Final-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:441e492f-e83a-59b7-ad47-c0013741809d",
      "id": "CVE-2024-4029",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2024-4029 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-jar-runtime."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.wildfly.core/wildfly-jar-runtime@19.0.1.Final-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:7751bd6a-4fa8-5b70-8735-a32674b03a7c",
      "id": "CVE-2025-23367",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2025-23367 is fixed in version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-jar-runtime."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.wildfly.core/wildfly-jar-runtime@19.0.1.Final-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:54ec50a4-3aeb-5232-b0b0-190334315bb8",
      "id": "CVE-2025-23368",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-23368 affects version 19.0.1.Final-tuxcare.1 of org.wildfly.core:wildfly-jar-runtime."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.wildfly.core/wildfly-jar-runtime@19.0.1.Final-tuxcare.1"
        }
      ]
    }
  ],
  "dependencies": [
    {
      "ref": "pkg:maven/org.wildfly.core/wildfly-jar-runtime@19.0.1.Final-tuxcare.1"
    }
  ]
}