{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:d5b64a42-aa61-5968-894e-61034d132725", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.9-tuxcare.4", "type": "library", "group": "org.apache.cxf.services.xkms", "name": "cxf-services-xkms-itests", "version": "3.5.9-tuxcare.4", "purl": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.9-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:dbd6588d-1df8-58dd-b576-fef5874f11ef", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.4 of org.apache.cxf.services.xkms:cxf-services-xkms-itests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:bf9199cc-6147-5ffc-93ef-b7bb194c1fc5", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.4 of org.apache.cxf.services.xkms:cxf-services-xkms-itests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0e65c5fd-eecd-5d0d-abb2-625cb0165156", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.4 of org.apache.cxf.services.xkms:cxf-services-xkms-itests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:5e71337e-e9e0-59e8-99c2-2a32624f4d2d", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.4 of org.apache.cxf.services.xkms:cxf-services-xkms-itests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b8a66f6e-bee9-5f4e-bd2e-086ec1da4ae1", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.4 of org.apache.cxf.services.xkms:cxf-services-xkms-itests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7279c592-ac58-5625-b988-dae9bb96bd4d", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.4 of org.apache.cxf.services.xkms:cxf-services-xkms-itests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e7432b05-a486-5299-99fc-25f93837e061", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.4 of org.apache.cxf.services.xkms:cxf-services-xkms-itests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:25223b43-463f-5890-bcf1-0d7ddb7497b9", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.4 of org.apache.cxf.services.xkms:cxf-services-xkms-itests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8ea52ea9-0b8b-50be-b4c6-aa7d6c22cb7f", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.4 of org.apache.cxf.services.xkms:cxf-services-xkms-itests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d5daa25a-e205-572f-a916-0e93d1423c9a", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.4 of org.apache.cxf.services.xkms:cxf-services-xkms-itests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:20970f73-27f7-50cf-9687-a33aca6429cb", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.4 of org.apache.cxf.services.xkms:cxf-services-xkms-itests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ae33e3cb-0cfb-51b1-abe4-d194b7145071", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.4 of org.apache.cxf.services.xkms:cxf-services-xkms-itests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4c1e7431-54ac-5105-b925-9a987ae9c118", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.4 of org.apache.cxf.services.xkms:cxf-services-xkms-itests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:37623ac2-0e39-5f03-a374-df73f6dee194", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.4 of org.apache.cxf.services.xkms:cxf-services-xkms-itests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:70d5565c-fb65-5bc7-8af5-bdd67567d3b4", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.4 of org.apache.cxf.services.xkms:cxf-services-xkms-itests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:fa0eb95e-6565-5fd1-8c09-e5fae6566ad9", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.4 of org.apache.cxf.services.xkms:cxf-services-xkms-itests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:29f41698-bebb-5ba0-be08-0bd52fcd3370", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf.services.xkms:cxf-services-xkms-itests 3.5.9-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4a58a5a0-d133-5aac-838c-8b72021f13f4", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.4 of org.apache.cxf.services.xkms:cxf-services-xkms-itests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:cfa21731-fa54-5e20-a929-3e6fb8bc4459", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.4 of org.apache.cxf.services.xkms:cxf-services-xkms-itests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:da9a87f7-020a-52c8-99a7-eeaf5f3385ef", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.4 of org.apache.cxf.services.xkms:cxf-services-xkms-itests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a6392e01-0090-591d-ae72-a45db989fba4", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.4 of org.apache.cxf.services.xkms:cxf-services-xkms-itests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:23658953-e29a-506f-80c7-e27bfec7b875", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.4 of org.apache.cxf.services.xkms:cxf-services-xkms-itests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:dd59b833-c2b6-5da8-a6c0-25459d6a2349", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.4 of org.apache.cxf.services.xkms:cxf-services-xkms-itests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:95afe8bb-a1e3-55da-8c07-626aa94ca5d9", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.4 of org.apache.cxf.services.xkms:cxf-services-xkms-itests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:44cdc22d-7b61-5ba0-b98c-ddf4f74d63fd", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.4 of org.apache.cxf.services.xkms:cxf-services-xkms-itests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:58adbc72-48eb-53b9-ae41-b095b122354e", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.services.xkms:cxf-services-xkms-itests 3.5.9-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:34b852a8-eeb2-5977-8a0b-9413b54c4bd5", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.4 of org.apache.cxf.services.xkms:cxf-services-xkms-itests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f76988f7-a5d3-58ae-af12-ca920628f3f3", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.4 of org.apache.cxf.services.xkms:cxf-services-xkms-itests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:34f1eec0-99bc-5524-9eef-c0a3e5f4ae0a", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.4 of org.apache.cxf.services.xkms:cxf-services-xkms-itests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:840a1f38-5ba8-582d-ac3a-7a5053fb48df", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.services.xkms:cxf-services-xkms-itests 3.5.9-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:07f2fae3-33ec-5afe-a775-8ba46a9e1988", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.4 of org.apache.cxf.services.xkms:cxf-services-xkms-itests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b44c1f7e-1e91-5e58-ad5d-5cdc817762a3", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.4 of org.apache.cxf.services.xkms:cxf-services-xkms-itests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:55d59d7b-bee1-517e-ac11-afe0aa315f1e", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.4 of org.apache.cxf.services.xkms:cxf-services-xkms-itests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:33031811-0034-5c62-a491-5ff5a1377356", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.4 of org.apache.cxf.services.xkms:cxf-services-xkms-itests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.9-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-itests@3.5.9-tuxcare.4" } ] }