{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:1fd48d17-686f-54cc-981c-463df0b9f3f9", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.5", "type": "library", "group": "org.apache.cxf.services.xkms", "name": "cxf-services-xkms-client", "version": "3.5.11-tuxcare.5", "purl": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.5" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:84c1049a-7eae-5fde-b48a-9205ce6bce37", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:0bf118dc-6f86-5839-9297-b50c99dd4a0a", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:b560c04c-84e2-5743-ba06-feb76bc1cb5a", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:51e0ecb7-07df-5719-9d88-1ee84d3cd267", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:bdec219f-5b38-53f7-b7d7-178fb33ad64b", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:de3a167d-ef92-57dd-9f83-ab6f4fb4c83b", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:834f9be7-6c34-5fd6-8fcb-cc84d52ffcc8", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:9053b84f-84b2-5a20-b21c-610ebddd452b", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:52117036-75ab-5c7f-97b7-8852919d91c9", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:a3b12b19-292c-560a-985f-1cb47571fa5d", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:7fb9a49a-3599-58ab-ab47-21e78b063cdd", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:dc1b5207-adbc-550e-8a08-9bf341c0ca6a", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:0103b0d8-9a15-5d09-aeb7-38968a5fd7ee", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:40147d0c-5bd4-57e9-9371-ca17ed1b3e50", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:340def21-229e-55c6-b917-f3924d01e8d6", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:5bb07832-6a5d-586f-958d-d40c5b2d1091", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:491be3cb-0586-5758-9ac6-703deb696b52", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:db9c5bc7-3ab3-596e-a4a0-542a673d8b91", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:19424ca2-62ef-5dfb-9d84-9d19752b3cde", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:8f17761e-3078-518b-927e-bad1a84a9259", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:93d3c83e-5a56-5d80-bd09-68a5b1f8b4de", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:c27f5d57-7e79-5d21-98a4-dd6b00fade8d", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:f7cb3835-5522-511c-9fe9-a31d0350494d", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:d4765262-4f05-5b37-b42d-4eb1cad1d41a", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:4d4e3cd7-5401-5491-887c-f9016feb48dd", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:a81bc14b-02a3-5ad8-be12-577c1a2af1e0", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.services.xkms:cxf-services-xkms-client 3.5.11-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:938c2d1e-62fe-5323-9980-2625c056d158", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:cb0a40d3-9eb5-537c-9d41-3ede9160e200", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.services.xkms:cxf-services-xkms-client 3.5.11-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:8f62512e-bbb4-5aa2-9896-f9bd8e3cedb4", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:1bdacc34-c349-5eb1-b7f4-9a6f1507c5bb", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.services.xkms:cxf-services-xkms-client 3.5.11-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:4a4fa1d2-00b7-5b8a-84a7-286b3c728e3c", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:97dc17fe-95ad-5153-aab7-ba88e040a266", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.5" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-client@3.5.11-tuxcare.5" } ] }