{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:b10061ec-b8cb-55a3-8541-abb7451fafa7", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.3", "type": "library", "group": "org.apache.cxf.services.ws-discovery", "name": "cxf-services-ws-discovery", "version": "3.5.9-tuxcare.3", "purl": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:74de0aea-73e0-58a9-b8e4-59696032e4f4", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.3 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c4717ce8-747e-5a88-ba50-a138c5ba5930", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.3 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f33b3c85-295a-55cc-91a3-967ae5c23f7a", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.3 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0d8a0bec-7720-56ab-b6ae-efc09e0d66f4", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.3 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:60405a2d-a61e-5ba7-89d8-61cec7354b9d", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.3 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:123be69c-9c5c-5921-8294-533408c93582", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.3 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1e3f0483-aac6-579d-a674-4698f48455c7", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.3 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e9f20ca1-62cd-54b3-b040-f992babd476a", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.3 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:dc2257d4-f8a9-5293-835b-aa8853d251fe", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.3 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0d64b6d2-55b3-525c-8613-b035db57e23e", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.3 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e5eca25c-1a77-526b-823f-31f38031b479", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.3 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f2abe892-4d60-5879-9bc1-117f7d1555bd", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.3 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:db12fe23-910d-59cb-8346-4093830171ab", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.3 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f1b26b30-56b2-5c66-b6e7-1a7183463a4c", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.3 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ffc729af-e786-5020-bb9e-9941ece2ed31", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.3 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c8cec14f-0b83-5dd5-a807-c5ea749c798b", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.3 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7791f224-e6d0-52dc-b0a2-14638ecd9255", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:33b02ba9-2428-5674-829e-2f2571a0274d", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.3 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0908c450-e4d4-5a74-a4fe-965362c04802", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.3 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8b6a3579-beba-59a8-8e6e-2da99ca315e9", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.3 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4d7f5f66-07f3-566a-b780-8c5001b34637", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.3 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d05b3320-3d11-54e9-a117-d242ac8e44cc", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.3 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9a26b65f-8ad3-53b3-a063-a92c9f3e4a53", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.3 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:88aeccfe-a488-5b6f-8861-61812ef30a23", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.3 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a8b28260-7458-5ad2-8e22-ef87573d4ea5", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.3 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:cf919d7b-c594-5a56-9f54-6511aa5e2a7e", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:723aea98-544a-5d97-bf8a-b57033d114ce", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.3 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4fa8d910-7a73-5fab-8f7c-d1d84a97171c", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.3 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0f4a8e97-e670-5e8e-8a80-4ae5fbd5ec14", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.3 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:41841098-b6d6-58b7-a821-22850f8eee68", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:dbc7fe9d-0a93-541f-85bb-416474e3a190", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b0bb295c-9fab-5f82-8db2-23c8cf035252", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.3 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b01e6a10-a08f-59c1-831d-b25e04ac1aec", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:35177fd3-49ed-558a-9a23-81061611ebbc", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf.services.ws-discovery:cxf-services-ws-discovery." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.services.ws-discovery/cxf-services-ws-discovery@3.5.9-tuxcare.3" } ] }