{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:b5d3a4a4-a688-5f3c-8f51-7384e91c045f", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.2", "type": "library", "group": "org.apache.cxf.services.ws-discovery", "name": "cxf-services-ws-discovery-api", "version": "3.5.11-tuxcare.2", "purl": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:4491b766-6456-5d5f-8776-e0a49c762035", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5f0b4bc1-d9e1-53d5-ac26-d6bd4c2e71c4", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:71816bc5-5664-5fcf-93be-e83aad42deaa", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d6a961e6-02c4-5eab-9d57-d59e65a18336", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:16a9848c-2afc-5513-9d8b-4d8c0b44d878", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:709320ba-5114-52f3-be96-fd8f3d5d2e36", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a2b83169-478b-52e0-97be-d73d050f76ca", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:656d4fbe-6e42-5645-ad55-8db36da54769", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7a7a80e1-6366-5145-a280-9aa09354808b", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a4e77b35-acb4-58ba-b12d-b90a728d49ca", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b56da58c-c687-5b42-8f37-f7cc2f1ed1c6", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f434c31a-9bba-55d9-a2da-65c498269838", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ea41612c-1afe-5de2-87a2-8fd5a89f936f", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:28b9ef93-c9bf-5550-8645-67e2e8e79af2", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a8b373fd-24cc-5583-8565-e3fcdd7f7e2d", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1f9fe014-74de-577a-a2c7-97812d1328c1", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e4263738-8437-5744-adcf-266349a57a87", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2a838d14-a680-5e10-bc4a-e5dc143f9a0b", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1bbf73ea-8d17-5c61-8189-05258f4e7f79", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:64e15e97-e2fe-57ae-8957-9b58149de4be", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:dacf25cd-c6c1-5bf5-8e5f-c4c447e0ae73", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9926a2fe-aa1a-54f3-a91f-dad1a01cbc65", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:247bd1de-5550-5467-8933-ea926d923ab9", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d054d1cc-4fea-5ccd-9c97-f6e6c60f130c", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2a8bbb57-c733-5bb3-9b31-a04d5a1818e2", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fd3cf447-1ab5-5eb7-953f-c7cd7ad5e7f2", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-api 3.5.11-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5edb054d-9e6f-5cd9-ab08-1e7f44ba60bb", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8461bd57-6515-5b6f-ace6-c5ffb3fe722a", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-api 3.5.11-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:eecf0456-498a-585b-b72b-57c40f9054f7", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2ed8fd5a-a542-5d91-bf96-94843e08c70c", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-api 3.5.11-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:502cfb98-0382-545b-af18-b44be794a567", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a7b048df-d0fc-5384-aa94-5d35165a3f26", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.2 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.2" } ] }