{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:fc0eba43-4924-5140-93fb-44efc287547e", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.4", "type": "library", "group": "org.apache.cxf.services.ws-discovery", "name": "cxf-services-ws-discovery", "version": "3.5.11-tuxcare.4", "purl": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:5d1de550-0359-53aa-8782-f343a687d49e", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:38399be5-b178-5af5-b29b-2e41059656ef", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:91b70914-5fd5-5d92-a895-41f80320e6d6", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4a37702f-8c99-51a2-9692-18044107036d", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2d1e35c7-f620-5c99-ba7f-4c02c498bab8", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:34cb6d5f-c855-5b3c-858f-a35265632c9c", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2c88f189-f040-5ea7-8872-27709cbef8db", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3a5c729a-6da9-5601-a68b-67f96a2fa0f0", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ac54e5c6-b0bc-5ccd-9466-45ac039f0518", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8ff39336-d3db-548f-9dc0-28926886d791", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4cfc09d4-5ab1-5849-ba37-fcb0e8c83adb", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e168ebfc-78e7-5701-9fc1-795dc51a6c4c", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b20e9c84-8c7e-52f7-877f-d7a3e9b56d4c", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7834a89b-b681-512b-b151-788a207249aa", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8c6f3814-c0e1-5e0c-a491-77c09d0fff65", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4bd00b51-8f38-5df0-a802-45ee2d66d711", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:80f055d1-2ddd-5694-9417-20864e1419aa", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8c62ec41-eb3f-5b4e-98fe-35c13207862d", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d96587f0-ccf0-5633-a133-5d2db233a9f8", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:77769c94-009d-57a2-b2e2-2a67f6f7cdc1", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:06a98704-d52f-53e3-a5d6-883d283a6dc3", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:9dfcdb45-1a09-5c53-ae42-ff7efebb9bba", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:32fb0350-deb9-5305-ab44-33991a486c44", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:55cd74a0-9a9e-579f-ae4f-8f1691fa0728", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:deb4426f-d95b-50f8-848e-eff5873d267c", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:dad1aee9-549b-5d83-a18f-8d0ec1ee434f", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:59e8a017-dc71-5ca5-b92f-a254a83c5e02", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:066454bc-32ae-5a23-a3dc-68fb01c066c9", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:67a553dd-68d4-5113-ae0e-83099823738d", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b410d8c3-d4b9-5564-9a3c-ad7046ce92a3", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8ca62063-0005-5a94-be1e-1dd42f8e7508", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:1799bbcf-746e-588e-98e1-093cc05136ea", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.4 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.4" } ] }