{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:1844fcb0-dfde-5dc7-9152-1c42dbab538a", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.2", "type": "library", "group": "org.apache.cxf.services.ws-discovery", "name": "cxf-services-ws-discovery", "version": "3.5.9-tuxcare.2", "purl": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:ad1848da-6d12-557c-8f3c-badb29a2d532", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.2 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a1d8c9f0-5120-5e4d-814b-1e7c35f718bb", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.2 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d20f46e1-41cb-5b53-bdc2-94d05dc44d12", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.2 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4f69d99f-8575-5cc7-9825-e811c629d9bc", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.2 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b5b972ec-0352-5eb4-b2fd-5c5af2d41a0f", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.2 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b3bef71e-1bd3-5a04-ac69-257cee3c6f69", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.2 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d210b114-35b8-50e9-9e22-88089b989e11", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.2 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9ca93684-c87f-5dea-81d2-e7df06846866", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.2 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a6dbfa45-7c2d-5d1b-80bb-588472fa2ac3", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.2 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6d08aaa3-5027-5df8-8338-8327d0770793", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.2 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2382af91-9ba6-57a7-a62f-9ee8b3d3da64", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.2 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ff3ce30c-fa6f-56ba-ba7c-2f776756c431", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.2 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bca5ba1c-0481-5b7f-9132-bf51d4a724e6", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.2 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f1ddac4b-e036-522c-9d2e-eaf9e339cc2e", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.2 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d193bdad-d94d-55de-b00e-f97327484858", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.2 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4c38849b-ab91-5f2a-9021-f95ba1248a17", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.2 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1e3f4adc-cbee-51cc-be37-c1a3bc7dcc61", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery 3.5.9-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:efabfb62-60b6-5adb-9540-535db11ef002", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.2 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:51b3d82f-24f0-587e-bd21-31d37eba6d15", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.2 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:adf64c3b-964c-5eb1-a43d-ba4835d08cd7", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.2 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:745ef582-c2f2-5fca-ae38-b8c144107480", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.2 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2389a4b2-9e7b-59ce-b720-fa6cfad920ea", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.2 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:76d20d27-ef56-55be-86fa-d2b152a5e374", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.2 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:aa575557-966b-5b9b-9f5a-7dfb56ed4cea", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.2 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c0b36cb7-00bd-594b-8be2-e9d5ee0383d6", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.2 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6f0acb10-0a72-5f6b-90d8-e1984ebe528c", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery 3.5.9-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cbc346a3-8ae7-5937-9467-a0cc9d3fec93", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.2 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a5372684-0aaa-5bef-b01b-3d4db7d981d3", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.2 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ac085276-0113-529e-9054-1c7a225398d8", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.2 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:064ed3cc-2f18-5042-ab11-fb12f59813a5", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery 3.5.9-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4a96678f-8156-59bb-99bd-6b7eaa63e773", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.2 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7c55cd6d-e56d-59bc-9049-e8563e64adaa", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.2 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:659a7c9a-64bd-5c33-8d85-f11982401635", "id": "CVE-2025-48795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-48795 affects version 3.5.9-tuxcare.2 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:dba35af7-78cb-51cf-8dfb-4345ff034ed4", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.2 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.2" } ] }