{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:f7b276a1-cbea-5bf7-baa8-a1d031b00a37", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-osgi@3.5.11-tuxcare.6", "type": "library", "group": "org.apache.cxf.services.xkms", "name": "cxf-services-xkms-osgi", "version": "3.5.11-tuxcare.6", "purl": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-osgi@3.5.11-tuxcare.6" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:1fcf5238-97bb-5ca7-b5cd-f1cde5bd86e1", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.6 of org.apache.cxf.services.xkms:cxf-services-xkms-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-osgi@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:664f8240-0150-54ba-8285-efbf78961c9e", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.6 of org.apache.cxf.services.xkms:cxf-services-xkms-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-osgi@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:a7d97bc2-baa7-5c19-a9bb-55f301aac515", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.6 of org.apache.cxf.services.xkms:cxf-services-xkms-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-osgi@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:412de646-d3a8-5662-8442-3e17b961ed2d", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.6 of org.apache.cxf.services.xkms:cxf-services-xkms-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-osgi@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:70eb9386-7c98-5325-9ce1-ac1673ac16e3", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.6 of org.apache.cxf.services.xkms:cxf-services-xkms-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-osgi@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:1fc1dac6-bcbc-5dae-882b-53a9a649acee", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.6 of org.apache.cxf.services.xkms:cxf-services-xkms-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-osgi@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:7ea2ad6f-ea79-5389-8196-43f05a89818b", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.6 of org.apache.cxf.services.xkms:cxf-services-xkms-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-osgi@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:3e2d6d3a-6528-5782-83d0-2a8d230e702c", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.6 of org.apache.cxf.services.xkms:cxf-services-xkms-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-osgi@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:326fb9ad-40b7-5192-8dfa-f197ff9ddb24", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.6 of org.apache.cxf.services.xkms:cxf-services-xkms-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-osgi@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:9cb915bc-6314-527f-9e85-40607dc4aac2", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.6 of org.apache.cxf.services.xkms:cxf-services-xkms-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-osgi@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:742c680a-42c5-5ae6-a880-f17a43343c28", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.6 of org.apache.cxf.services.xkms:cxf-services-xkms-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-osgi@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:7820bbf9-9b68-5d5a-bc76-447d2ade15f2", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.6 of org.apache.cxf.services.xkms:cxf-services-xkms-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-osgi@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:9b874500-1b3f-5cf3-91bf-82c9d715c7a6", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.6 of org.apache.cxf.services.xkms:cxf-services-xkms-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-osgi@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:ea0fe7ee-47ff-561a-8e68-a684420fc175", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.6 of org.apache.cxf.services.xkms:cxf-services-xkms-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-osgi@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:2350a60c-538f-5bbd-9d82-3d24f65a2c41", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.6 of org.apache.cxf.services.xkms:cxf-services-xkms-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-osgi@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:6f3eeb40-8a6e-58e3-b206-ab313d4aab16", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.6 of org.apache.cxf.services.xkms:cxf-services-xkms-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-osgi@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:3b0c3830-6c74-5344-a92b-d8a83ff6669f", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.6 of org.apache.cxf.services.xkms:cxf-services-xkms-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-osgi@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:42f4ef76-6721-5299-aa31-d84b610aeb70", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.6 of org.apache.cxf.services.xkms:cxf-services-xkms-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-osgi@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:243226ff-8d44-5cec-8b62-fe9a99caf22a", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.6 of org.apache.cxf.services.xkms:cxf-services-xkms-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-osgi@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:5152f22b-1781-55b1-9f73-9eae6378b387", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.6 of org.apache.cxf.services.xkms:cxf-services-xkms-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-osgi@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:bb53d0cb-d4f4-58b5-969c-76c4671e5e85", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.6 of org.apache.cxf.services.xkms:cxf-services-xkms-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-osgi@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:8bf02e03-44b1-53c0-bccc-90f2c30a9258", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.6 of org.apache.cxf.services.xkms:cxf-services-xkms-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-osgi@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:5fd06026-be30-5ff5-afa2-87506684fd24", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.6 of org.apache.cxf.services.xkms:cxf-services-xkms-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-osgi@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:8116c369-61e8-59c5-847b-df369e7e5320", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.6 of org.apache.cxf.services.xkms:cxf-services-xkms-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-osgi@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:280849bb-d015-5fed-a2ce-50755734fc4b", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.6 of org.apache.cxf.services.xkms:cxf-services-xkms-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-osgi@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:7556db28-49bd-5b8e-9f4d-d6af488009f8", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.services.xkms:cxf-services-xkms-osgi 3.5.11-tuxcare.6." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-osgi@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:cd10888d-f947-5b1d-9751-48f2b9b4766e", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.6 of org.apache.cxf.services.xkms:cxf-services-xkms-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-osgi@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:7411c698-c8bb-58b7-af81-c74daeabeae2", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.services.xkms:cxf-services-xkms-osgi 3.5.11-tuxcare.6." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-osgi@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:a66a5c62-97d5-59a5-9f1c-1ec6a41434f0", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.6 of org.apache.cxf.services.xkms:cxf-services-xkms-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-osgi@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:430df258-75c9-542a-8779-773bc1e469a2", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.services.xkms:cxf-services-xkms-osgi 3.5.11-tuxcare.6." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-osgi@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:b3248e06-2a2c-528a-8b27-ab3a54f98758", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.6 of org.apache.cxf.services.xkms:cxf-services-xkms-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-osgi@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:8ca9845d-6c78-54a9-8ca4-cea265132cd2", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.6 of org.apache.cxf.services.xkms:cxf-services-xkms-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-osgi@3.5.11-tuxcare.6" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-osgi@3.5.11-tuxcare.6" } ] }