{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:8af3d7dd-6bc1-5db1-95ed-15d686f58870", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.3", "type": "library", "group": "org.apache.cxf.services.wsn", "name": "cxf-services-wsn-core", "version": "3.5.11-tuxcare.3", "purl": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:b41799f7-303f-5636-8513-ff38db6615eb", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.wsn:cxf-services-wsn-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e1bfd9f3-230d-5a76-a8e4-d7119a0c8598", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.wsn:cxf-services-wsn-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8289ac31-378f-519e-9b0b-4e49c1ed0d7d", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.wsn:cxf-services-wsn-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:972ddb8a-c7b8-54ec-a122-9e2c0a376043", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.wsn:cxf-services-wsn-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a5271053-91c8-5f36-84a2-34b836a2e0bc", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.wsn:cxf-services-wsn-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4a357aa8-a0ea-5023-b967-0bdfdd1b3758", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.wsn:cxf-services-wsn-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:88a3c7d2-b592-5c99-831d-3ed13d952e99", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.wsn:cxf-services-wsn-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6ef711d4-1dc1-58a6-80f7-b127de875e14", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.wsn:cxf-services-wsn-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8e950759-d8e9-529a-b412-8cab1631f0c5", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.wsn:cxf-services-wsn-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:259157de-a785-52af-8009-f529812bc953", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.wsn:cxf-services-wsn-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6277410e-4684-5112-a893-316facf1a3e0", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.wsn:cxf-services-wsn-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:97ddfafc-1598-5328-a447-7362282423ec", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.wsn:cxf-services-wsn-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4b6e3658-b1b7-5d3e-9598-5acdf4ad71f2", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.wsn:cxf-services-wsn-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fab1166d-6b4b-52df-8bc5-de1a5c959575", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.wsn:cxf-services-wsn-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:31d15e33-247f-58e2-8923-242d04cb5f0c", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.wsn:cxf-services-wsn-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0aca450f-67ec-5efe-82d2-3536a6ad18bb", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.wsn:cxf-services-wsn-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:72562035-35b6-55b4-aab7-21cffb83e54a", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.wsn:cxf-services-wsn-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bfda7c61-0ef6-5922-a774-e099af45c373", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.wsn:cxf-services-wsn-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d506c4bc-0f1d-56c1-bd5e-3e3702280b8a", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.wsn:cxf-services-wsn-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:68f6c956-53ac-5369-85ea-f5a1bc457a50", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.wsn:cxf-services-wsn-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e1caa099-7888-54a2-8a5d-27daa869e1e3", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.wsn:cxf-services-wsn-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c5a2bb28-534a-59f7-8403-d129bc577a49", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.wsn:cxf-services-wsn-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6fdaae49-4454-51a6-8b4a-211e042972f2", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.wsn:cxf-services-wsn-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1011b856-146a-5a2c-9c3a-c8d3f2b6f0d1", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.wsn:cxf-services-wsn-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:16ecfcbe-c649-51f3-b571-7ef9efb44381", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.wsn:cxf-services-wsn-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f2b409da-faac-5896-aa66-d7fcd2f8cc55", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.services.wsn:cxf-services-wsn-core 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:49127c97-d423-5475-afda-955ae102485e", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.wsn:cxf-services-wsn-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4cf674cc-f985-59e2-80de-bb0dfa56232f", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.services.wsn:cxf-services-wsn-core 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b7de14ea-4332-59b4-b50d-c95c441be1ef", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.wsn:cxf-services-wsn-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f482d83b-7d45-567c-b126-1dddeb34bc83", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.services.wsn:cxf-services-wsn-core 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bb8eb699-da41-548d-b656-080730440582", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.wsn:cxf-services-wsn-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:71318566-3688-573b-8f70-304da7a6e1b2", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.3 of org.apache.cxf.services.wsn:cxf-services-wsn-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.3" } ] }