{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:b2d364fe-a204-5595-8d3e-2735ac868ba4", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.11-tuxcare.2", "type": "library", "group": "org.apache.cxf.services.xkms", "name": "cxf-services-xkms-itests", "version": "3.5.11-tuxcare.2", "purl": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.11-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:3f56d0eb-5052-5e7c-bd9b-7ca5b46c2fb9", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.xkms:cxf-services-xkms-itests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:39ff7756-56cc-5520-9c4d-76c82159f4c6", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.xkms:cxf-services-xkms-itests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f167154b-ef9f-5294-8a17-87518ba8170a", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.xkms:cxf-services-xkms-itests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fe120061-e92a-5e7b-afb9-09d5c3d6d679", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.xkms:cxf-services-xkms-itests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d2b4203e-c4e8-59b8-9489-c3fd3405ac5a", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.xkms:cxf-services-xkms-itests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:516eff8c-8abc-50e4-a8c0-9be445468f29", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.xkms:cxf-services-xkms-itests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9729df55-d2f8-5bef-84e4-964007299d2f", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.xkms:cxf-services-xkms-itests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:be0e7b4f-96bc-550d-bd5f-ccbd8abb87d8", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.xkms:cxf-services-xkms-itests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:25be7771-1d87-5986-a25a-e2bc571ac65a", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.xkms:cxf-services-xkms-itests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5afd8374-936a-51e8-bba7-3211739e62fe", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.xkms:cxf-services-xkms-itests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0e549fb1-c3e2-5252-9bd0-a8374e072ab1", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.xkms:cxf-services-xkms-itests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c095c8c3-d06e-5ebb-aa23-ff59c73e0921", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.xkms:cxf-services-xkms-itests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:76bd7d38-848e-551a-af63-f059e2000a41", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.xkms:cxf-services-xkms-itests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4e62b9cd-0f20-55e5-93b7-6f266a7f9144", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.xkms:cxf-services-xkms-itests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:40902aab-cd5f-562f-becb-5d3f3af5f031", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.xkms:cxf-services-xkms-itests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d8db2a45-5f91-5ffb-ac24-c1ae8bd760f9", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.xkms:cxf-services-xkms-itests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:aace488e-579d-57ce-baa6-d3812dd8fd77", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.xkms:cxf-services-xkms-itests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ba110c0a-cc2b-5a45-82b6-8f1793b737e3", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.xkms:cxf-services-xkms-itests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5df48747-55fc-5384-8a22-b02952843f58", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.xkms:cxf-services-xkms-itests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ea728644-d05e-5f5b-8b61-66c55175d9fb", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.xkms:cxf-services-xkms-itests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:91ad5761-81dd-53ba-8b9b-79c94f916992", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.xkms:cxf-services-xkms-itests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2b1a7382-b117-5734-bfbf-9805161c11f4", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.xkms:cxf-services-xkms-itests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b46c215b-125c-5c18-b7d0-53ea07c2ea6a", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.xkms:cxf-services-xkms-itests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:dd4f8f14-697a-5dfd-bc17-4d2fe15700ef", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.xkms:cxf-services-xkms-itests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:330491f6-2e5b-5cce-aa06-eba84915e4d2", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.xkms:cxf-services-xkms-itests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a3adda8f-e4b1-5afb-86ae-a2033afe2b91", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.services.xkms:cxf-services-xkms-itests 3.5.11-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:499d8cab-931c-5c4c-b972-b575cccf67cf", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.xkms:cxf-services-xkms-itests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:46b9facd-6644-5d26-baff-271bc6c02349", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.services.xkms:cxf-services-xkms-itests 3.5.11-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9fd5407b-94c6-5849-9822-a2ba582ca49a", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.xkms:cxf-services-xkms-itests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:06a80b5b-7706-52df-af13-42cdaf577ad7", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.services.xkms:cxf-services-xkms-itests 3.5.11-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:208e153b-c120-5e91-a5ae-1a7fe021ee3e", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.2 of org.apache.cxf.services.xkms:cxf-services-xkms-itests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5d29b94c-c01c-5709-9340-df3998171309", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.2 of org.apache.cxf.services.xkms:cxf-services-xkms-itests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.11-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.11-tuxcare.2" } ] }