{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:cc833ac3-b3bd-5b18-9c90-ec8f0c0d1fdd", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.1", "type": "library", "group": "org.apache.cxf.services.xkms", "name": "cxf-services-xkms-x509-repo-ldap", "version": "3.5.11-tuxcare.1", "purl": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:8915b934-da7a-51a1-b427-123628878029", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:336b31d3-17d9-508f-8c3d-c88b070b5243", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:99db2bd8-79c4-56bd-96b3-b2bea8496374", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f3536c55-47a8-53b7-b23d-87bd1762bdd8", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:74174ede-a802-54d8-971f-3b20de14ecaa", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7d50cbfa-fb77-5a2c-95ca-8c4fbf14f4aa", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:60b40306-dc5f-59fe-8abc-8e9486ccb8e3", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c529024a-4d94-51b0-92fc-b255c93a2eb7", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b1653a22-f42e-5a0b-8726-de2c8a6e6ed0", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:939d8de6-ef94-5218-ba58-c9a42db188a0", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:23c3990e-e24d-50b9-9789-ebbea9a6c6f2", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b5f84a8f-927f-57ac-bda8-bc3cf852f595", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:eb777d76-f06d-530a-b4a0-947455fa7459", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b5fb9a68-aa75-5f82-bca2-cf33aaa59bd9", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3eefc75e-109b-57bc-97e6-01c51ebca33e", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9d8bb9e8-bc10-514c-97a4-b74c133ef578", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c55904a8-bb8e-5e1c-9562-0aae24fbf6dc", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:45919d6b-43d2-558a-ad28-0cc162dfb6d5", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:93bd70cf-1796-513d-a295-53063b7515f5", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c43f345f-65d5-5522-ab7f-e9098d79d7c1", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fe8b7327-498f-54cd-8c8a-c72685e7c50a", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6618d6f0-04da-5ac6-9f49-424841867261", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:608ffb4e-7078-5ee1-9024-af582b4de7a2", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5a0f1334-dd5e-5e70-9c6a-06247213564d", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:81ee4e82-fec2-578f-832f-72a40d7d2b81", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ed13d1f4-3f4e-5d98-ae58-2a35eb78eb14", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap 3.5.11-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c679dc42-88c0-57ca-8bb0-5e51002d3579", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:443945a4-0801-5eef-a8b3-45e1c69eaefc", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap 3.5.11-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3565c39e-ba39-5287-9433-3ec456638a97", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:186c5505-78ad-5e1d-a933-21bfedfa182f", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap 3.5.11-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6fd87117-2d7b-57cc-a806-41c6f675a04e", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7dcece3e-34b9-59c2-a2a7-c7a8d57bc920", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.1" } ] }