{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:3fd4a2cd-858e-5457-89ef-014004277215", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.4", "type": "library", "group": "org.apache.cxf.services.wsn", "name": "cxf-services-wsn-osgi", "version": "3.5.11-tuxcare.4", "purl": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:bc3d312c-7f81-596e-b48c-49bb5bb8770b", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:1591e17f-acae-562f-88b5-541a091037d2", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:72b8856d-d84b-5211-9a79-1e7e60bf0cdd", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d4bcead4-3444-5685-b6de-99876ff61e9f", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4b5d74d0-79fe-5fd8-bf1d-590895ec7577", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:38c8ffed-90ce-511b-84c5-f4aa02cc4a0f", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7bc61fce-6120-516a-865c-d4ec03e29ff6", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f6b1ebe5-de74-5853-bacb-335292aba26e", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8168c3c8-f216-5b14-8e4e-05e16a76850b", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:eef14ab5-49b4-5e36-82cb-ed3eaed80a25", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8c936c1a-4327-5dd0-801d-13459f14156b", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:5d9492ac-94d1-5eeb-bec3-fa3d8705a212", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3bf067a0-1926-5b52-9d8a-362d01d6e171", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:32a0da47-c725-5e53-b1b9-4afed5083031", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:336ce68c-be1a-5ba7-8b10-610c8e00e1c6", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:dcd909b9-b179-5725-b26c-6ce8bdf8ee53", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c1272498-9b79-5a9b-9a61-26f02e998589", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d17330b7-2361-558d-b290-44e6e6fe9544", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3248f1f5-7707-5853-b557-e14445128df2", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:61916ad5-8634-5d69-9890-3d365e86fe81", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8b93d135-57f5-5512-8ade-bbd8f936354a", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:54e4f297-8fb5-559d-9eb7-43eeaf692676", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:5f639271-57b3-52a6-b5fa-38b1c1ac4c54", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:826db714-68fa-5c9b-be55-50375c7dccb4", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:44d1b867-3ba5-55e2-b96f-3c160f4ea94f", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:6244054f-e86d-5b10-badf-60f2af0c00ac", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.services.wsn:cxf-services-wsn-osgi 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a9207933-4096-5b33-92c4-3c84b540690e", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:457c2fff-563c-59af-b85b-a7cd002bbf16", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.services.wsn:cxf-services-wsn-osgi 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4b44ca08-feae-5328-ba01-7c07e7a55d14", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:5314f211-055a-5d41-a054-c530a7e86ffc", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.services.wsn:cxf-services-wsn-osgi 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c7504922-0dc5-557d-aebc-e5f96379858a", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:fc2fe94d-b748-5840-9d7a-7d0eea7ab927", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.4" } ] }