{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:b8cb0b53-dbb6-5a7a-8761-ffd1662f71b0", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.4", "type": "library", "group": "org.apache.cxf.services.ws-discovery", "name": "cxf-services-ws-discovery-api", "version": "3.5.11-tuxcare.4", "purl": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:648e1e1c-1119-5c44-9846-16f033f75d01", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e3847faf-ce7e-5b50-9110-a252723ba53a", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d8e2bef2-f876-5cb5-a64d-2432614e1e01", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:044a4b4a-08d6-550a-967f-9faad1cede4c", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:88ad131c-9f78-59ba-971d-4353104308d6", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d266b5bd-5cfc-5561-8bbd-d3cf8488c89b", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:18b90ff0-0abb-5e37-90e3-e3dbfbd7a393", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:6ccc6ac1-24f7-5b25-b46e-6d19b354857e", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d5e514e3-b909-5216-b1dd-c741367b5236", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3f7374d9-c766-56b5-a43d-d92c6ea1680b", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:50367ae3-e380-5286-8697-6e6306d28b83", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e282f649-0776-55b5-98d6-c173ab6906f6", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:dbb92d8f-867f-5da5-91ac-16683d73e032", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:eca557cc-c477-5d89-b106-ef741b839ac4", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0d53ebfb-e432-5260-bc07-5efdd939224e", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:5c90cafa-95cd-5aa4-b37a-ec2788eefc8f", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:67680fd7-7e2c-5731-a772-641dd18abfd2", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f44c1ccf-0c05-5fec-b192-b0bab5a874da", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:49db6459-4833-5727-84d0-3945948688be", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f0fda210-888d-5607-85c4-75f53a061ead", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:74168a1a-b372-5ffc-8307-2a03dec0ddb2", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b48e96b3-f5d8-50a7-a064-65e4a4f1868e", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:999a45e3-7318-5079-827d-9e1fa0410419", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:93064b54-253c-5628-a81f-3039708feef8", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:49539a0a-6958-55cd-8d49-f6658b6d60f7", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:02c28f6f-5a19-5d59-94f5-9f2148a1e9c2", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-api 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b3f6d7d3-cf53-5688-99d9-c4dcdf66bf3e", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3a15efa1-5680-508b-aeb0-64b66156794c", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-api 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:38fae85a-da06-570b-af28-1487af0f4ee2", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7875167f-6001-5fe1-b010-051b160d7d39", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-api 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:841ec336-b52e-5445-a873-336c879de9c2", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b5bdb413-0417-5723-8f74-2dd8f3341c5b", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.4 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-api@3.5.11-tuxcare.4" } ] }