{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:73b0c22c-4a73-5483-a099-3cb2c6014a1f", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9.tuxcare.1", "type": "library", "group": "org.apache.cxf.services.wsn", "name": "cxf-services-wsn", "version": "3.5.9.tuxcare.1", "purl": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9.tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:2a18dc84-1496-5508-9937-dadf39099e85", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9.tuxcare.1 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:53ea63d2-c6df-56ba-8e93-1771ccdaef88", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9.tuxcare.1 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6c7a8ff4-0d30-5e5a-bac9-d1ed25e4a17c", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9.tuxcare.1 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:96b07bc1-88ad-5e68-aec6-b2fdb6a06b6b", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9.tuxcare.1 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9fd96ea0-eabc-5d28-a448-5c1917024fa3", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9.tuxcare.1 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:060dadfe-16e9-5f3f-a842-564c5fe75bbf", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9.tuxcare.1 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7e2b5e6e-7a0b-54eb-b5b9-be86695685de", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9.tuxcare.1 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a0f951c1-3fed-509a-8fcc-f29eff525870", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9.tuxcare.1 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2c717134-13b5-5598-8d41-deb2b1107d14", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9.tuxcare.1 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7994ee6b-f88c-54f3-8f58-3e2f55234f5d", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9.tuxcare.1 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:774bb0a7-d8e0-52f4-a846-e6aee99dc505", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9.tuxcare.1 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2b0ed49e-25c2-5400-b59e-5ed175dcb2db", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9.tuxcare.1 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:23fb1131-aeff-5958-b371-3f6192625a7f", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9.tuxcare.1 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ac0a485a-8cee-5144-9f8f-a7c26b00f398", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9.tuxcare.1 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:54ed40e0-09d5-5c29-9b64-21b60f29da7e", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9.tuxcare.1 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5059b279-18fd-5390-9fd8-6681207e5218", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9.tuxcare.1 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9152b27c-4bc8-557d-bf9f-bb8b9f480f01", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf.services.wsn:cxf-services-wsn 3.5.9.tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b450fb30-fef3-5a36-8b55-b2f2ab197437", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9.tuxcare.1 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e8065c7d-cae7-5db7-8217-fbea984f4389", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9.tuxcare.1 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:baa1b539-8901-5a52-93bc-4930564f225d", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9.tuxcare.1 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bd4b1861-7002-5f7d-8468-bcaf7687f764", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9.tuxcare.1 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6623b2e0-05f2-5836-9b23-d2faa18b2894", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9.tuxcare.1 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dd60340a-b019-57e2-9e3d-0612b880b677", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9.tuxcare.1 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:792f9c67-685c-53a7-ac22-0ff5350c9788", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9.tuxcare.1 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:92e7e5f6-285c-5167-a443-269822a48092", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9.tuxcare.1 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:54f3170c-aedd-5293-b769-b53ebcb87e9e", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.services.wsn:cxf-services-wsn 3.5.9.tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a42ff48a-86e5-5daa-a1a9-5959b71752fa", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9.tuxcare.1 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:364e2c38-e6f4-545a-8824-5d03353213d3", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9.tuxcare.1 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:501f866e-4cfe-5202-9b5d-943936195874", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9.tuxcare.1 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bbb16282-d8c9-55c7-be0b-7aa0f335c898", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.services.wsn:cxf-services-wsn 3.5.9.tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:73cffe3f-d24e-50c3-bebe-88d827db4e93", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9.tuxcare.1 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d5792532-2383-556a-8db1-02540d066f3f", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9.tuxcare.1 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:883cd2d3-9732-5866-bf9d-e017d9b3bf13", "id": "CVE-2025-48795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-48795 affects version 3.5.9.tuxcare.1 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:67c24a63-1402-5dd1-ae12-71be98683769", "id": "CVE-2025-48913", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-48913 affects version 3.5.9.tuxcare.1 of org.apache.cxf.services.wsn:cxf-services-wsn." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9.tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn@3.5.9.tuxcare.1" } ] }