{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:e7b04318-f409-5388-956a-de51c799bae7", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.3", "type": "library", "group": "org.apache.cxf.services.xkms", "name": "cxf-services-xkms-x509-repo-ldap", "version": "3.5.11-tuxcare.3", "purl": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:57d2fec1-ec85-5602-8470-a44843294bc4", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0f5b81f4-18b1-5895-b21b-5d055f1498bb", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d3e6f769-e2e0-5a6e-972c-334ac4fdd5be", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e240e7d1-abae-5f47-81dc-b20d092165e6", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d013bbc0-4867-5037-9261-69e16ae90a94", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c38423ab-792d-59f6-8823-d020be143a40", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:82bcf0ac-bbd3-54f9-b801-8301bde4e00b", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f9b947db-9b1b-5a17-9478-131740df7369", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:98eddceb-024a-5eef-b49f-35323bf4a587", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:58d67129-835e-554d-94ef-597a8f32ad72", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b6724991-4b28-53ac-8f50-9911baece20a", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d6009e17-5d45-5ee3-8877-e164126a7e72", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:03c7b171-c097-52f1-a15f-beb200a2746b", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c8eee7bb-919a-50f1-8469-9a5525bfda40", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:258b0d43-d055-5bc8-a424-64828616d21e", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ff495be2-5e23-56c0-99e9-6812635a4f52", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1bb9be85-cd60-5fc9-9bc2-0eb2bd318825", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:233d1728-e57a-5e94-946a-44ea682959c9", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:124be4e9-1eb2-5ff6-b665-cf2182e68295", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:aaaae9d2-5ecd-59bd-8721-9bcd51f0a83f", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:98746175-6316-5da1-9f95-7a98c8077dd4", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5f78a876-6746-5441-8619-69fd6c492b9a", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:cd156ae7-422f-56f7-814e-40e0a191283a", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:64f60637-5105-5795-9549-599ab91a960a", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d6cfac7e-6962-5a3b-a278-35a0a9c6a2f7", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7767dac7-1cd5-5d96-8658-f8926dfb6f03", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:79859b48-a756-5e97-b39e-f617a40f773d", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:edcea980-e153-5a20-bc6d-4dd8aad7186d", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3c5028fe-fc55-5959-bdb4-af6662a5e1e6", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6cd0ae5b-dbd8-5afb-b8c2-e9043d538aa5", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1feaa97d-ed1c-5269-a34e-2dd2b1a7f2ee", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.3 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8948e3af-9bc2-5138-abaf-7fac88f68acd", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.3 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.11-tuxcare.3" } ] }