{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:45076a77-090b-54ef-8c3f-9a2294324374", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.2", "type": "library", "group": "org.apache.cxf.services.wsn", "name": "cxf-services-wsn-api", "version": "3.5.11-tuxcare.2", "purl": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:3b0f473b-24da-5643-b277-cede34ceacd4", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.wsn:cxf-services-wsn-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4d618783-c7ca-5412-958c-6e630715203d", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.wsn:cxf-services-wsn-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fb653a70-c0e4-57f8-8720-daaa558cd3b2", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.wsn:cxf-services-wsn-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a90e7909-8f59-598c-89e5-166c0f283acd", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.wsn:cxf-services-wsn-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3e156fb1-4098-588f-bd2f-4d71e1cc8bdc", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.wsn:cxf-services-wsn-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:13e5e886-e19b-55ad-bce2-6872e52ea286", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.wsn:cxf-services-wsn-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f9174a4c-301d-53e4-8fee-ff0891805c1b", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.wsn:cxf-services-wsn-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2a49694f-0640-5f81-b41c-a4c82f72e61f", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.wsn:cxf-services-wsn-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8a1fccf8-454d-59a9-a088-65ce8ac5fff8", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.wsn:cxf-services-wsn-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e4829c38-a57e-53e2-887b-693ea8b0463f", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.wsn:cxf-services-wsn-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:eb27dc46-44f0-5c17-abe8-57c1114124c8", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.wsn:cxf-services-wsn-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7c6bd835-67e0-54ac-962d-81ece1c4102c", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.wsn:cxf-services-wsn-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2507a2ba-4c42-52ab-b55b-58d3ed0869c2", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.wsn:cxf-services-wsn-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:472813a9-db98-5965-85b2-813fa081bd7d", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.wsn:cxf-services-wsn-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2a933cee-d764-560b-988a-a8b68eb5fe8e", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.wsn:cxf-services-wsn-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:aaa8de72-4169-5876-bb5c-667e6fe7904e", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.wsn:cxf-services-wsn-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:955eea56-949b-5fc9-822f-e51f1640c544", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.wsn:cxf-services-wsn-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0bb974bb-f214-51f2-98ee-bb426134d00c", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.wsn:cxf-services-wsn-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b6590d91-0d3c-5ece-a47d-a1b60b12ab4c", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.wsn:cxf-services-wsn-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:69ecbc5b-e693-58b4-b16a-da258e4ba3e7", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.wsn:cxf-services-wsn-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:49be05a0-c126-50a3-afa0-4dba792c8101", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.wsn:cxf-services-wsn-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:99fabfaa-377f-5d13-b1e1-64e1579c0afc", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.wsn:cxf-services-wsn-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e5fe06e1-b548-5ea2-9fa4-27c9b6038ef1", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.wsn:cxf-services-wsn-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:24fef34f-ebeb-5cc0-b2e9-8158d0d9f03c", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.wsn:cxf-services-wsn-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:475eaf60-809c-5fcd-9ef8-a84b9f674930", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.wsn:cxf-services-wsn-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:512ab74d-1aba-511f-94cb-bd888b2f0eb6", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.services.wsn:cxf-services-wsn-api 3.5.11-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bd20492d-1cdd-5370-8e7f-71de6c863f22", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.wsn:cxf-services-wsn-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bb9be546-9404-5fe2-8a99-22de39417618", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.services.wsn:cxf-services-wsn-api 3.5.11-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9c19483e-b769-5f51-8072-db698b422cc8", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.wsn:cxf-services-wsn-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ef28f6b0-c063-5f8a-a8bd-800ee670f2ce", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.services.wsn:cxf-services-wsn-api 3.5.11-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b475851f-72eb-5d36-bcb7-f03dcdcae586", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.wsn:cxf-services-wsn-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bb41b0e7-3eeb-5b8b-9bdb-a37cf93184d0", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.2 of org.apache.cxf.services.wsn:cxf-services-wsn-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.2" } ] }