{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:d44ccc67-12ea-5a36-b8ce-ef49f4f23fa3", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-features@3.5.11-tuxcare.5", "type": "library", "group": "org.apache.cxf.services.xkms", "name": "cxf-services-xkms-features", "version": "3.5.11-tuxcare.5", "purl": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-features@3.5.11-tuxcare.5" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:575a0731-c2e0-58f5-a89a-f156ad93daa5", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-features." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-features@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:f4477648-6990-5e56-8b0c-c5b66d1efd52", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-features." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-features@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:3282a447-62ba-5d6f-b315-ecea22ca3a9f", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-features." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-features@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:7d17dcd4-0da9-5e7d-b83d-df7237d260cc", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-features." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-features@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:350b5ea8-e1c0-580b-8bef-9e66a44eb097", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-features." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-features@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:d2f6ac10-fb05-561a-8698-4d31b3e1dcb6", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-features." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-features@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:81953da0-4e9c-5aa8-a41c-8914a4214b92", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-features." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-features@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:ff2848b0-d1c5-5ac3-8e00-12c9e616ca90", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-features." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-features@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:14ce5e72-6cd7-5b12-b4fe-8ee7b1789813", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-features." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-features@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:0c6aaec6-9450-55b7-a613-514cf2cc6f8e", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-features." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-features@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:b75dc30c-7a7e-57f7-bf89-67f2f4b782bd", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-features." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-features@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:7e603b34-d2a0-5f22-8edb-7912b87ce665", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-features." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-features@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:1c76afbe-6c82-5ad7-bed2-a59e15761ba1", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-features." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-features@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:e4b834ab-0732-5993-9569-4babfab94000", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-features." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-features@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:4600d840-ec6a-54cf-86ec-c5811e8c863d", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-features." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-features@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:0fed9479-3bc5-5bb8-82d0-f1f0a46680df", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-features." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-features@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:9c8513ae-f3cc-5fe8-8377-8f7a3dd916cb", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-features." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-features@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:32ef0d40-9f78-5338-bdc4-2b6136dfa8bd", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-features." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-features@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:65deb1a8-f2e9-5764-a15a-b2b53492761d", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-features." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-features@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:a4673313-4161-5459-9b48-5de31f5e77cf", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-features." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-features@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:3ada9a2e-d51e-5026-9857-557d6af75ac7", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-features." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-features@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:a8961b06-cd37-5b68-8c74-6276e03617a3", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-features." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-features@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:fd32de90-1859-5e27-9116-5c3bee4e38f2", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-features." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-features@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:6aeb91c8-82e9-56eb-a6fd-4d26177aaa52", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-features." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-features@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:5498e2ae-5629-5573-9b62-fa96a3071ee8", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-features." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-features@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:802be023-79c4-5c5d-9cf0-b1e999f55e49", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.services.xkms:cxf-services-xkms-features 3.5.11-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-features@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:af4500ea-05df-535a-a348-cce870da4a09", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-features." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-features@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:e1898a9b-053a-50fe-98aa-a7bb1217de0e", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.services.xkms:cxf-services-xkms-features 3.5.11-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-features@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:4d274fb9-ba19-514a-9764-5d0595d9fc96", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-features." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-features@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:f1b8bf45-f58c-5349-b4b5-90b9a86f2a04", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.services.xkms:cxf-services-xkms-features 3.5.11-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-features@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:d8a00c17-7141-538f-89a6-9e837a8c237b", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-features." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-features@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:f8322426-61a0-5f89-ad1c-277c6adb807d", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-features." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-features@3.5.11-tuxcare.5" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-features@3.5.11-tuxcare.5" } ] }