{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:ca09b174-0204-5d8e-99a2-939f36eb0c5f", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.11-tuxcare.3", "type": "library", "group": "org.apache.cxf.services.wsn", "name": "cxf-services-wsn", "version": "3.5.11-tuxcare.3", "purl": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.11-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:afc563d7-aa6e-5014-9a6e-7168ee6719af", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:26b6b42f-fa2b-590e-bc88-e17f7bcaec3f", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ad335334-b53e-5bbf-8d4d-6acc3b4abf65", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e26357ba-06ad-51e9-8742-5b3eae47d00f", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:883d7890-66a3-5a7f-8fb0-56d59e8f1172", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b20795c7-b34a-5149-94f4-bab95adb6cd4", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8e577eb4-324d-517a-bcf4-b3a05a9e1479", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6345441a-38a3-5afd-ad5a-ffa8bfaed0fd", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d644a558-f678-5bf2-8bf6-4d7488e79841", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c4e91ffe-7297-5976-9026-49b876f469b0", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:19fafd3c-b645-515b-b358-069f56c5796e", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1c8d4a27-26a1-5ece-98d7-4902f790f076", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ea0a17b6-4884-5c76-a8b8-43cb4ffe9cde", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3ea5b51b-1973-5581-bd74-8302302c59d0", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:cac24e07-c6b7-5fa6-9f14-7637d6f77a94", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1472b04c-7cfe-5b02-8988-c0af182f2ab6", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:74ee8dcc-b776-5435-8d9a-dee296ca2faa", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e32e0b29-0c5e-503b-9f9a-14e069cc7ff6", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e910717c-7edc-5a84-b480-5d61c9b0f915", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6eeacb72-94c9-5a67-8bd5-f2e3188dcdbb", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c74f1502-67f2-5c2b-8789-d05ab64e6b3c", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7ad0e407-2894-5ce4-9be6-fbe631e5bf29", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8fd5266b-e46b-5756-8e5e-b6ad8caf0fff", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:700f1bed-9eac-5f0a-9dff-b5d9fc5b76b1", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:68e98ba2-ca98-5d75-a4f7-b2e4ad52dc91", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fdc5c6d9-b889-577b-87b1-760871e0b3ef", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.services.wsn:cxf-services-wsn 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:653e3ae5-a11a-5b49-ae89-0f1ba4781f0d", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bec3ca63-180e-51be-9bba-9d3ddd2533f2", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.services.wsn:cxf-services-wsn 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c031ef36-de07-5b36-b515-7ab8f82185b8", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c15867e5-bcc5-5da5-845e-ce61476124f4", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.services.wsn:cxf-services-wsn 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c605726e-c2d0-5b2a-b04f-c5b75f84bec7", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e99df204-e168-560b-83c4-8a69b48ea5c2", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.3 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.11-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.11-tuxcare.3" } ] }