{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:52f27372-4883-5507-b31b-b5ff5076d271", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9-tuxcare.3", "type": "library", "group": "org.apache.cxf.systests.wsdl_maven", "name": "cxf-systests-java2ws", "version": "3.5.9-tuxcare.3", "purl": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:b2b8fe73-0645-5909-ab0a-c570b5b15d32", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:117d5ab0-0c3f-5ae0-8762-a7e5565f9e0a", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:079ea233-0db2-55dc-8c87-2e65df01f159", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bcbbc7de-c432-535f-8591-9764ac65310d", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:856e6b7e-40e1-5b66-9536-3abc3d9c87c1", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0ab4420c-f0d1-525d-8fed-d18fbaec1db8", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6d8cfffa-fe82-5fe8-b1fb-690d33ecc7c6", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ef931d47-7ff9-5e18-bf10-40d5414647f8", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bea28f70-3012-5f74-8271-60e89b21c7ab", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0a2a2c48-d25c-5912-9bcc-b0487412a2bc", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d5d9159e-5cfe-5a48-bd33-498e25329361", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7d47d75f-3d08-5e1e-b5c5-7f99b9633cc7", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4b744ec9-1e89-5ecd-9640-737414d7aae6", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c361c316-5f8f-553f-93f1-1705d14a6bf3", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2a90b091-d567-5758-85d8-3307550366f9", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8cd16dd2-6520-5efe-9399-b64ed0c0c3cc", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2a976265-9923-5a52-96d4-67a260e0521b", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:91e2104b-4018-58a3-a874-0d47edc41389", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:752d65ca-b605-5458-9c4b-6dbf2739d5b6", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:21b0de79-9665-5204-ad3f-fed7fda3b0bc", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7cf45b6d-1a3f-5ed3-beaf-b0f643c9101e", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:50bd679a-35ab-57ba-b256-701f89db2bd6", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4bfceefa-f6f2-587b-9dc1-49da0958965d", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b982bd4b-b03a-5628-b19c-50eef1e865aa", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7d8c046f-8564-5843-88de-f7a22a0d8121", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ea50481b-7087-5cdc-8dfc-094467d937e0", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:43f84b42-41ca-59d1-989a-e5a9cb0bfdde", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:15202c7b-0a8d-5043-a39c-0f66d2298410", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:51179c0b-27a1-5aaf-b940-ada0d2e75868", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:603ccd2a-5906-5bdd-81d1-c6c863df1e7e", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a01c1809-bb50-56cd-934e-dbb12aa95b46", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:94ec58d5-752c-58e4-ae1c-084075209281", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0d098a48-14d0-5bf8-baba-6432980271aa", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c9134200-d2b5-5770-843b-29cf6497405d", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9-tuxcare.3" } ] }