{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:385b5807-2247-510d-a9c5-57059a668b39", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.5", "type": "library", "group": "org.apache.cxf.services.ws-discovery", "name": "cxf-services-ws-discovery", "version": "3.5.11-tuxcare.5", "purl": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.5" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:128c3a9c-4411-560c-94f9-035397d55f29", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:0339aff0-af22-50e8-922a-822f7a39e6e0", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:f6ed6c99-c7bc-507f-9820-a0f1cdde5da6", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:436f05ca-e6b8-534a-b451-244ce0d35262", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:ad648d43-ddab-5527-a72e-70b1d2848f2a", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:9c8731aa-ec3a-5b24-b44a-ac0c14b919c8", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:35bbb051-3d15-5ad0-9cbd-e9705967a8e9", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:c2243f93-561d-5361-8f77-086d65438671", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:e398b591-87cc-5826-81ac-9d1194ac1078", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:e2463f3a-fc5d-5d7c-b993-2c6d078e3061", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:15fe8702-3de7-5bb3-96eb-df3d2c287656", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:f5a5876f-5098-5ba4-a6e2-b08a49e6a86a", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:ceca5c02-f210-5779-91e1-881b6eb343ce", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:d95e21d1-8f5a-5f54-9940-2245b50ee38b", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:71a48693-f976-5797-aefa-b2a655c61f22", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:28213620-56c1-587c-8227-03d3795a4a27", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:9ba2ab12-78c0-5ab8-9f0e-071d400ba95b", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:36678043-4584-5323-bd3c-671020d7679f", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:868f8e00-00e9-52c2-8a45-353f10dddca5", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:3c1673fc-ee97-53a0-99ef-5a2aa6c329dd", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:9d298caf-2061-5b62-a91a-eea5bf5b4a9c", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:cf8eda5a-03cd-5f43-9901-4395e58320cc", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:39750811-1838-557f-bf46-3674e2f44a7d", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:217b43ed-a385-51b8-977c-c8d85102a2af", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:11361786-89b6-5237-adfd-082ee0786775", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:cdb5a9e8-d571-5789-88c9-620b63d36455", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery 3.5.11-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:e3f9a792-bdb3-5a00-b97f-c7cab8241f95", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:a5ea398d-d4f9-52e7-80a7-7a5523beb4a8", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery 3.5.11-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:ca9a24d2-cfc6-59d2-9d9c-dcab96416505", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:57973889-681f-57a0-a453-482f34b93c83", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery 3.5.11-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:f6eee793-e7b4-5328-b107-e48b49827644", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:a5a820cc-1b59-582c-aff1-284a9f441001", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.5 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.5" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.11-tuxcare.5" } ] }