{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:9a5b5a20-610f-5f7b-869b-4dfa5378d57d", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.1", "type": "library", "group": "org.apache.cxf.services.xkms", "name": "cxf-services-xkms-client", "version": "3.5.11-tuxcare.1", "purl": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:86c08947-2d1d-59e0-ab82-87822595c07b", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:43b05eb6-ff75-5097-8d4f-56c5c8b2f729", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6c002732-6af8-561c-aeb8-5eba3bc74b7b", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b2d36bd4-b943-5801-bbfb-7372015a11e7", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ab58e2ad-5660-5f7b-90aa-a3dc2de692c6", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dae4939e-0d55-5c12-9f57-be4e4c01f785", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:51719728-c8b5-50ca-830e-8411a9bf645a", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3db7fbaa-045b-529f-a294-3ec1adede6ce", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a8dc685c-e311-5ec6-ac5c-dd875e94a8a2", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b8c94086-3594-5ce9-81a5-4ec7e2a73bbf", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:95f18963-c890-5063-ac7c-7c16bcf40b47", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4221285f-6283-5041-a318-be92d145354d", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f8f92d13-c5c9-57ed-ac55-6972ec2a4981", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8b1d0388-6e64-5fe2-8792-4e305d6d25b7", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:08c543a1-7ccd-53f6-8afd-7868dd6b2b9d", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0e9d22e2-e7d5-5e48-939e-7101a1cb3b4e", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b59d58dd-0d23-5cc6-a9ac-81d2f81667d6", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:278686e4-21dd-589d-8b18-643e997c4504", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:474c91cd-80a5-599b-a12e-43e2cc235a2c", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:633e5b5c-675f-592a-8903-28f146107875", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:da10ef04-ae6a-5975-9493-73879f57c4ac", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8b156c02-747d-53a7-ae4c-eccc84594d29", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bee36052-9fb0-562e-8b09-ddf7f1fd9a39", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:05557f6b-01d7-5ff5-9352-e2a42461095b", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b3fd4c7c-6fb8-5f48-b7c7-67084886d904", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:41877141-6d1c-5d43-988e-dc91b3f3b05a", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.services.xkms:cxf-services-xkms-client 3.5.11-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:91cd1e29-2ab6-595d-adca-6fbe6353e8ba", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f695a4fd-ef62-5477-9745-5491d9c0dfbb", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.services.xkms:cxf-services-xkms-client 3.5.11-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9ce281f0-4dcc-556b-8f89-0038492ecd63", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dd332d12-6558-5c9e-ab63-1a9146aea30b", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.services.xkms:cxf-services-xkms-client 3.5.11-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b7692e4f-4323-5421-beca-a07c4287c431", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4a7d4f56-bf64-50e0-aef3-fd86dcfb2ab1", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.1" } ] }