{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:c3a70e34-ad52-58ea-8895-1554f3cf03a6", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.3", "type": "library", "group": "org.apache.cxf.services.ws-discovery", "name": "cxf-services-ws-discovery", "version": "3.5.11-tuxcare.3", "purl": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:7315890f-722d-53ba-a232-95785642d19d", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a6089c5c-d648-51a8-a8f9-b53b766f1172", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e9b1e860-f746-5183-9984-0929e09b90c8", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:59a1c2e4-7d9f-5e95-9372-ba54a50de38d", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6763ab65-5b9b-595c-b0e6-bad6d13cc65b", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6d04a258-9574-5124-b428-e5615fd60517", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e6dd3338-ade0-5739-9535-9c742d6ac526", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c2fd6bc3-9a26-5bd2-921f-209f43a5c4d6", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c4c9ca92-67a5-533a-8479-b4614fc53a30", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9976737b-eef2-5b55-8f63-4ed7c2fd6bfa", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b2bf678a-0b1c-5542-8e51-7c6c4759764b", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5c3d4a9e-b00f-589f-afde-3407e042901c", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e98f5b65-1b38-538d-80d1-3d664eb8f4c6", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6d8b71dc-1e29-5a08-bbd5-00313c470995", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:33e18c1f-c96a-525c-a532-694878b52422", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6e64f20d-4ba5-5dd0-b2cf-6e5cd7fbaa34", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:568b4eae-02f2-545d-9cf9-69f1f157c871", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:99ab04a1-11a6-5ae0-8194-e20242b5a4b8", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:31975dbe-3a7b-5271-b1fb-d6a3cc94bbb3", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9fbdfe5c-8101-5e56-93e1-1cfb001e4ce5", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9b90ac3c-5f93-5b16-9ef2-6420bf46358a", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:41eef962-c00a-5db3-96d6-9a55ee84390e", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c66b6a9c-ec61-5d8e-b5ff-09766575aacf", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9c5000da-aaee-5169-ae0b-26076bb87f6a", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:472161f2-0500-5d8a-a547-b2f04f2f1c3b", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:112f49c2-0d15-5246-838e-9a74b617818e", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d5ed10bc-c7d4-5346-82dc-16800e8178ef", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1c3d3540-6de2-544f-9e41-7bb881c0c443", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a01d071c-e698-5f5a-9daf-9433558c55b2", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:cfd53775-7ac1-5a96-9e1e-777bc80d4e0a", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:73ea9cdb-8fb5-59b0-994a-9d6eeb1f1430", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:365a1610-9b3e-5bca-8048-7ab2e97ca801", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.3 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.3" } ] }