{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:33913271-5f31-57f6-a5e9-10737a39ba7f", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9.tuxcare.1", "type": "library", "group": "org.apache.cxf.services.xkms", "name": "cxf-services-xkms-x509-repo-ldap", "version": "3.5.9.tuxcare.1", "purl": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9.tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:b3aa8004-0c99-5fd5-a245-0307c3c85610", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9.tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1b8ee2fa-2db5-55b9-a876-b59ed984ba42", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9.tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c4f2db59-eaaa-52b1-8bae-ac26d3919b4c", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9.tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fd9d4469-c79d-5058-a483-850ecac0675c", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9.tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fe3f207c-6803-5ef1-914b-8a612541e640", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9.tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1b42fdb3-4bc1-5d17-a71c-5d535ad6831a", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9.tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6f802720-8384-5b09-9ca8-dc245759d087", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9.tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a77d4627-c6d0-565f-9138-b4ebd0ef21cc", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9.tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:164a5ef9-0005-5748-ae9c-833391963680", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9.tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f47ecdbc-46e7-5905-8f71-b84ff2646520", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9.tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:43a1de05-1681-507a-be18-3321e4c825c5", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9.tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1ad2bf66-2133-5f3f-bcf4-531326114455", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9.tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a2a600f6-aa65-5e7d-92b2-e338a775f4a5", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9.tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b8a668b7-60b1-50cf-84de-dd40062ec7d7", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9.tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8a98b988-23ed-5ab5-81ec-66482b6a19b3", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9.tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:47774687-496e-5a72-a364-aeea9a417b0c", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9.tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fd9d06ec-5588-5c12-b973-bc319c8bafa8", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap 3.5.9.tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0896ee6a-1bbb-596f-9cc1-68c39c189e58", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9.tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:80c39ac3-2aee-53ce-a76a-71f3ecf831ca", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9.tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:068aca22-decc-5791-b81a-71b93c83b4c0", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9.tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:07f349b1-409a-54aa-af8f-41d0fda67617", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9.tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:aabda276-ce90-5d9c-9937-cf3a45d465d1", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9.tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:83660efc-b429-574c-9e35-cd4e42909fc6", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9.tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:698b8f4c-a57d-5afb-b4a8-eb6db15e7ad8", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9.tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:72e27f25-4006-5431-9d4f-8ed588f80dc5", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9.tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e7821e6e-2604-526d-88e0-60fed7937690", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap 3.5.9.tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bfa055ec-0841-5b36-8f30-743c32908041", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9.tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b4d50978-1694-5179-8b78-984c0ec1f415", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9.tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c730709d-5a8e-568f-88a4-3060c9dcde97", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9.tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5000abd5-92ec-5641-8575-2fcfe7510841", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap 3.5.9.tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ddd9aad0-6edb-598f-af29-1737a34518dd", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9.tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4b41be3c-7e47-5b45-8b51-54295688f773", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9.tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a7a49213-79d3-597a-b870-b825219ce4c2", "id": "CVE-2025-48795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-48795 affects version 3.5.9.tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b50150c8-7fb2-52c8-8384-91487132e911", "id": "CVE-2025-48913", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-48913 affects version 3.5.9.tuxcare.1 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9.tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9.tuxcare.1" } ] }