{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:8cc7bf1b-a546-5785-b1db-63574e986315", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.karaf/cxf-karaf-commands@3.5.11-tuxcare.5", "type": "library", "group": "org.apache.cxf.karaf", "name": "cxf-karaf-commands", "version": "3.5.11-tuxcare.5", "purl": "pkg:maven/org.apache.cxf.karaf/cxf-karaf-commands@3.5.11-tuxcare.5" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:8b053de3-1710-5b71-b1f2-a8067b1d7600", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.5 of org.apache.cxf.karaf:cxf-karaf-commands." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.karaf/cxf-karaf-commands@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:4ddbd6c2-b612-5b2f-b26b-61fcb55ca327", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.5 of org.apache.cxf.karaf:cxf-karaf-commands." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.karaf/cxf-karaf-commands@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:393d8daa-6027-5dfa-8b3a-a0169f91407f", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.5 of org.apache.cxf.karaf:cxf-karaf-commands." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.karaf/cxf-karaf-commands@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:105bae0b-b2d4-54fc-8629-f17c7ace906e", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.5 of org.apache.cxf.karaf:cxf-karaf-commands." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.karaf/cxf-karaf-commands@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:20a6ef7a-c8be-5b55-ba69-0d13b9bdfcc0", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.5 of org.apache.cxf.karaf:cxf-karaf-commands." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.karaf/cxf-karaf-commands@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:ad89e06f-258e-57f9-921e-92423f5f034d", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.5 of org.apache.cxf.karaf:cxf-karaf-commands." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.karaf/cxf-karaf-commands@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:fbc745d8-89a5-5eaf-95db-1361035cc881", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.5 of org.apache.cxf.karaf:cxf-karaf-commands." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.karaf/cxf-karaf-commands@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:dd07a65b-7e72-508d-add2-bec605e65b80", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.5 of org.apache.cxf.karaf:cxf-karaf-commands." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.karaf/cxf-karaf-commands@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:f4e1b89e-76bb-5f0c-a662-5b5a72b046e2", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.5 of org.apache.cxf.karaf:cxf-karaf-commands." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.karaf/cxf-karaf-commands@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:89100d90-2016-57c0-a95c-f54904479670", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.5 of org.apache.cxf.karaf:cxf-karaf-commands." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.karaf/cxf-karaf-commands@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:099c3a6f-8fc0-52fa-8284-28cb74582c79", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.5 of org.apache.cxf.karaf:cxf-karaf-commands." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.karaf/cxf-karaf-commands@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:c19de19f-9197-5ede-879b-d251281a66b2", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.5 of org.apache.cxf.karaf:cxf-karaf-commands." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.karaf/cxf-karaf-commands@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:3cf32874-0653-569c-8c3e-07b135e0bbb6", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.5 of org.apache.cxf.karaf:cxf-karaf-commands." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.karaf/cxf-karaf-commands@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:67309ab5-5c47-5dd4-9186-7a189d5a5408", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.5 of org.apache.cxf.karaf:cxf-karaf-commands." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.karaf/cxf-karaf-commands@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:a0abe0cd-afd2-588c-a67f-04fcc9082639", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.5 of org.apache.cxf.karaf:cxf-karaf-commands." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.karaf/cxf-karaf-commands@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:76c512a2-05fc-5f50-a9f5-b783d390a3ab", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.5 of org.apache.cxf.karaf:cxf-karaf-commands." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.karaf/cxf-karaf-commands@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:d93af9bb-d60d-543c-851e-77b21d893609", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.5 of org.apache.cxf.karaf:cxf-karaf-commands." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.karaf/cxf-karaf-commands@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:8f9172d7-5736-5550-aecd-ada48ba137bd", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.5 of org.apache.cxf.karaf:cxf-karaf-commands." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.karaf/cxf-karaf-commands@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:e9f168ac-78b1-550c-a2d5-2ff8b4ae27ad", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.5 of org.apache.cxf.karaf:cxf-karaf-commands." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.karaf/cxf-karaf-commands@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:71060689-0828-546b-bed4-47ce54e6186b", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.5 of org.apache.cxf.karaf:cxf-karaf-commands." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.karaf/cxf-karaf-commands@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:98d79f1d-4479-5284-849d-81de0d718642", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.5 of org.apache.cxf.karaf:cxf-karaf-commands." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.karaf/cxf-karaf-commands@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:bc93300b-eefb-583e-bcd8-efd021e9cde9", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.5 of org.apache.cxf.karaf:cxf-karaf-commands." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.karaf/cxf-karaf-commands@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:a0617d8d-5c20-56e4-832d-3e1b09436764", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.5 of org.apache.cxf.karaf:cxf-karaf-commands." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.karaf/cxf-karaf-commands@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:ef4222f0-7e3d-5898-a1d7-3ef51d0519a9", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.5 of org.apache.cxf.karaf:cxf-karaf-commands." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.karaf/cxf-karaf-commands@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:928f1352-32d6-503d-b6ff-78e03a504a7c", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.5 of org.apache.cxf.karaf:cxf-karaf-commands." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.karaf/cxf-karaf-commands@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:5064c839-1746-5ecc-b15a-d509d95749e6", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.karaf:cxf-karaf-commands 3.5.11-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.karaf/cxf-karaf-commands@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:0f1c36f8-85d9-5099-8639-56c382067186", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.5 of org.apache.cxf.karaf:cxf-karaf-commands." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.karaf/cxf-karaf-commands@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:db0cc354-a2d3-55eb-b175-f4f814a5a36c", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.karaf:cxf-karaf-commands 3.5.11-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.karaf/cxf-karaf-commands@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:992dc203-a848-5505-b7b1-12c5b45858f4", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.5 of org.apache.cxf.karaf:cxf-karaf-commands." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.karaf/cxf-karaf-commands@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:577b988a-bedc-55a9-9934-9ab343e7f2d7", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.karaf:cxf-karaf-commands 3.5.11-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.karaf/cxf-karaf-commands@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:0457338f-495e-5c46-8d0e-60a074b5c494", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.5 of org.apache.cxf.karaf:cxf-karaf-commands." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.karaf/cxf-karaf-commands@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:32e0ed2e-ac6f-5679-80d3-17ed5e4046b1", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.5 of org.apache.cxf.karaf:cxf-karaf-commands." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.karaf/cxf-karaf-commands@3.5.11-tuxcare.5" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.karaf/cxf-karaf-commands@3.5.11-tuxcare.5" } ] }