{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:b637eadb-d0e5-5c42-9688-8d408690d306", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-service@3.5.11-tuxcare.1", "type": "library", "group": "org.apache.cxf.services.ws-discovery", "name": "cxf-services-ws-discovery-service", "version": "3.5.11-tuxcare.1", "purl": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-service@3.5.11-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:b2c9a9b9-1966-540b-96ae-dd1b1bb0d0f2", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-service." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-service@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a2a45a36-7eb0-5b36-9c68-0dcf7f1a2fd5", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-service." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-service@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:519ce806-fc24-5abd-b1a4-5ea0f4ade3bf", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-service." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-service@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7fbcb917-3dc6-5e01-8501-a79e296fa48c", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-service." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-service@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3b30e0a1-819c-5abf-b0ba-a99a9b3ebd17", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-service." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-service@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e28d1f53-b089-57dd-9e1a-0c23221c8424", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-service." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-service@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:64054f68-85ad-56d0-8266-db9abc447bb0", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-service." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-service@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d7f7a47d-eaa3-5e38-adb4-5452357f65de", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-service." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-service@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6b9045a2-81d5-5edd-9bb6-84c562c57f85", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-service." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-service@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c43d8e3b-3204-5874-b904-6a7de4f4fb58", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-service." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-service@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9b89e4fa-c03b-54d0-bd46-78a26fb7e33e", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-service." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-service@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:85d34a74-81bb-5dfb-95d8-6b7097d433e3", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-service." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-service@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8ce9640a-0f99-5ceb-a25b-ba477be0dfb8", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-service." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-service@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:387cf784-16e5-5256-93c0-b9e168be8259", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-service." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-service@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fc6d7420-1924-5583-9a57-c1360fbe103a", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-service." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-service@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4b578ee9-008e-5ea7-8fd3-cc921a48a614", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-service." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-service@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4027b255-b8fa-53db-b089-6dd598c2e5ad", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-service." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-service@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e4a3a1ab-baf8-592a-87b6-3e1374f26699", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-service." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-service@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:be8beca6-19f0-50d7-9439-84979330080c", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-service." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-service@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e7a5906d-7ad0-51db-abe9-d06ba882415b", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-service." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-service@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b3789b52-500d-5a08-b44f-1cb4b62a68b5", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-service." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-service@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:83b08a02-0bfe-54a1-99d4-1ae34533821e", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-service." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-service@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fc2a0f06-83a2-50af-a611-341937178f29", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-service." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-service@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4487dcad-7bd8-57bc-ba18-35c80b295817", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-service." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-service@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9755cec6-d24b-5e54-b420-e8ff464cb6d8", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-service." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-service@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6aa93a71-de56-5e62-8b40-7e2891ff36ac", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-service 3.5.11-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-service@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fccb9e89-b5e4-5407-817b-506e8244ee9b", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-service." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-service@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:54ca728a-755e-5a1b-b658-e6c7dd64859c", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-service 3.5.11-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-service@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c17e48a6-15e6-5a4c-8dd5-5101d804eef6", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-service." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-service@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5970bdc7-6ad7-529a-9e4d-f9f8131a14b5", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-service 3.5.11-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-service@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c5804907-4a69-505d-b5ac-2956601f6572", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-service." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-service@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b0a1853f-8e3c-5f50-a813-7e1a74dce2e0", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.1 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery-service." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-service@3.5.11-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery-service@3.5.11-tuxcare.1" } ] }