{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:2a9f5a10-e7e2-5f35-8ab4-db0ce447ab18", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9-tuxcare.4", "type": "library", "group": "org.apache.cxf.services.wsn", "name": "cxf-services-wsn", "version": "3.5.9-tuxcare.4", "purl": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:a63d3daf-9a0c-5322-871f-b637daf371ce", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f552b50b-8059-50e3-a5dd-546b6c9f67ca", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ff6c3939-a94d-5d2d-8f80-00516e967ab8", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a1d2be77-dfc0-5a44-bda4-8cc6761047b8", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:76c7234d-1d25-5639-b5f7-7c01f2bc3ae2", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f5a67914-84a5-57a8-8e3a-692bce01b4e9", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:413fb775-0ff6-5910-80a8-39578141160a", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ebf63d8e-9ff0-5795-acb7-cdf8024d48e5", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7d602f7e-6bc1-5e04-aceb-05129db9f43a", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:595a00e6-60ea-53f1-ba7e-8a1a1510b94f", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:5c87fe58-5596-55ad-988b-9ed56b82657b", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a4bf08e2-1394-5f3e-b502-c77b38aec355", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3362bdb7-fcc5-574f-9d7c-be0c764fce39", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:cf6b5847-ae14-5c1d-b7d6-3141c4a4efb1", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a7b9d188-d268-5900-82d7-84e3279243eb", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:1e029e41-4a85-5549-894f-b66a39763428", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e3e22bc0-90cc-5ffb-b121-feee37b97dd7", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf.services.wsn:cxf-services-wsn 3.5.9-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:66ffaa94-d05c-599a-9105-4d03d1b7be35", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:980384c3-9a22-5b0f-9988-004a9a73ec9d", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:dc6bed96-2ab3-572f-b314-b0c872e39fd4", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2659bb9e-037d-5ef1-aef9-b6226ed3bd51", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:cbe89621-300e-5078-9fba-b6ade372fefb", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c0139c92-b01e-5d59-8cd1-0c0e69ad8991", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:653d14d8-cfc2-559d-8c10-5b387cf1fa31", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:593430d2-aadc-5296-8abd-570f03718d5f", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:1b2c1301-9590-501b-b128-1085fc7ad0a6", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.services.wsn:cxf-services-wsn 3.5.9-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4dbfd28e-7982-569c-8b43-e60d8791fb44", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a97d6c47-b01d-51da-acb2-f8171feab132", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2ed26cd6-7a7e-564e-93d1-a4ab0204aa14", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:14455345-d24c-576f-95e1-7abfe10c79b2", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.services.wsn:cxf-services-wsn 3.5.9-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4466e21c-3fee-5f80-a60c-533799876fd4", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:57336228-c3b8-5304-82fb-203301913e6f", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a71fd50d-b7ed-5747-9f09-5942c7241b80", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:5f5941d9-35ac-541a-976c-49700ae1ad3e", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.4 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9-tuxcare.4" } ] }