{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:08c779ba-ce26-5050-85bd-b87fbb8c39b4", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.4", "type": "library", "group": "org.apache.cxf.services.wsn", "name": "cxf-services-wsn-core", "version": "3.5.11-tuxcare.4", "purl": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:5370ad57-e8cc-5c86-9219-d7c54b7695e0", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c9b66d3b-ca0b-54ef-8188-da567d196710", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f662db37-1f1a-56c4-a0fc-f53832405a7d", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:97a43835-9f12-5e62-b439-0c1cbc85cfe4", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4b92d309-4742-5ab1-a1a2-e035f497cb32", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:743199d9-8a06-546e-8c3e-47ffafa825c8", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8ba02cb6-e0ff-5e6f-922e-244665c6bbeb", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4281cf29-7573-58fb-9447-a2afd522ee98", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ad90b0bc-cba5-53b2-a86e-7643a1f14922", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:1c7587da-31b1-5e6e-b9cf-78c7d62167f6", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3f9b3685-9143-5473-94b7-8f0fc68fea0c", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:45852c80-3799-5f0b-b056-a69c883bf549", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:9ef5b302-4364-5e13-94c9-c6b863346604", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:92937b46-a045-55b7-8f8c-66b7c4a23c84", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:bae527b8-9ca4-59fd-8312-ed1a7cba3948", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:48a7eea9-a808-5791-b3d6-794511d7d355", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:887a7390-929a-5254-b487-6d81e8894c73", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:de1af89d-3858-5758-ac05-205fb7b02482", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:50eaefdb-b568-52cb-995b-77ad57dca437", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3be97a03-6f8c-5773-b8a2-3e96b4913299", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3b56ca17-06db-5676-ba8c-978f49cd7d71", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:019146de-dd55-569f-8591-347d7dc6cffe", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:57442c69-c916-531b-87a0-160c4013a452", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:38d49667-38aa-5f4c-9893-f2c70333c1fa", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2475ce71-fb85-5f2c-ab9a-7b192955430b", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:561e44c3-803a-5b9c-91d0-91da0eb1a6ff", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.services.wsn:cxf-services-wsn-core 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a78803a3-601c-5430-abc0-35653ca81ada", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2a5107e7-b9c5-532b-b18b-adfaa9a4614d", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.services.wsn:cxf-services-wsn-core 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e33e8a7c-4d20-5b5f-a8b9-622368a63d39", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:9507e244-91db-56e9-ad6f-0324e62d27ea", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.services.wsn:cxf-services-wsn-core 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:fa37f069-53d8-51dd-961f-828897bf443f", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ade3eca5-8ecb-51b8-bfac-b14eb9662771", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-core@3.5.11-tuxcare.4" } ] }