{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:47ff2f3d-7c83-55fc-95a5-f680951410dc", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.3", "type": "library", "group": "org.apache.cxf.services.xkms", "name": "cxf-services-xkms-x509-handlers", "version": "3.5.11-tuxcare.3", "purl": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:a85c39c5-0d46-5727-8a84-c1806c6c4d00", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-handlers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6a602c2b-db2c-5d67-8222-c0a4b623bb27", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-handlers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e2c8cca1-d875-5151-b5a6-9975ce6be62d", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-handlers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8b71331c-0e3a-54bc-bd4b-5daea0729ae6", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-handlers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4b34b04a-68ab-5eb2-8a9c-3d77d73004f0", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-handlers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3268d311-fe4e-5364-bca0-f0386a44843c", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-handlers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f58e595c-ed26-5e53-ae9a-48e94680bc75", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-handlers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ac9e8c49-59a8-53a2-8163-645a20e20712", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-handlers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:44e24d81-65c0-5b0f-b5b0-6542e88c4f6e", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-handlers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8b2a871c-8419-5c7f-a42a-f6187ede21c7", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-handlers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c508d139-df24-565a-b6f0-88b0aba1ae68", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-handlers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b388ad68-ef84-5083-81b1-e9e16820729e", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-handlers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:578daf91-faa4-50db-a9e2-2239c4564e50", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-handlers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:eb799b00-d8e1-5716-be3b-273d5598f3a5", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-handlers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5a3bc2f2-1f34-50ec-9cd4-db782c574d8e", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-handlers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0c60179a-cbf9-5c84-b313-41d331e4970b", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-handlers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:62419051-e254-5700-8aea-bb95667ba065", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-handlers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c3c6308e-0216-5e1d-b263-8f6adbe67507", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-handlers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:faa24342-b9a5-5bbe-bac7-3b47090c70e2", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-handlers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:26abb5b5-3d9a-5735-ba16-339c3e10cdf8", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-handlers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d26b661e-2243-53fc-b463-f2b7a737a7c3", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-handlers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:764ebe88-9294-564f-a43d-de2f1b698f3f", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-handlers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:58e06df9-612e-57c5-a6a0-3fbd9d8eb38d", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-handlers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bd74cc92-a037-5164-9636-70297713c585", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-handlers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:04d37141-dcbb-505b-a49d-b10cca19a9d2", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-handlers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:aa2eb32d-4596-58a5-a892-8bbfced4105a", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.services.xkms:cxf-services-xkms-x509-handlers 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:89862fce-f875-5bca-a1d1-97cedf257878", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-handlers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a9b29642-5fe9-5ee9-acbd-0b881b388c39", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.services.xkms:cxf-services-xkms-x509-handlers 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:796454ad-b726-5e19-8119-8e70ccb58dc6", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-handlers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:444e0e1f-9f7e-5181-9c48-7ed1bf5d4326", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.services.xkms:cxf-services-xkms-x509-handlers 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8f4d4678-4c25-5f2f-b7d3-1b96af0871c0", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-handlers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1bb71117-c959-5be8-b9a3-0bdf085bc64d", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.3 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-handlers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.3" } ] }