{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:40420622-9986-5cb0-bb0a-9bf4cc6f860e", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9.tuxcare.1", "type": "library", "group": "org.apache.cxf.systests.wsdl_maven", "name": "cxf-systests-java2ws", "version": "3.5.9.tuxcare.1", "purl": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9.tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:a16d6c2e-02d9-59f7-bf95-0c1d173dfd33", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dd7785a2-a6ce-55c4-86b7-93bc93e7fda6", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:73ed734b-a5c7-519e-87f5-5d0ce8e3a35a", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5d7fbf9e-106a-56eb-9906-e2be1aeffe2c", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b69bf875-055a-583d-b67f-9e983fee82e7", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3c1b6536-56a7-5806-974c-64a302bd9f53", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f0b9bbaf-2f26-580d-a2bb-e9a5a5f672f0", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b0d5ec0d-7300-58cd-a823-76306093b827", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1432e345-a878-586d-a357-71fee8adf2ad", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8f952162-bda5-52fa-af03-ae6a3faf08fe", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f77ebacd-2af0-572f-82ea-f5f2f970bac2", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9b599d75-5edc-5c06-9039-2e06c5c4568c", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:61ee72d8-0463-5ed2-ae2f-3871b45b6fe7", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1cbde4c5-0618-5312-808e-1b1c26a76288", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2d9cba02-0c18-529d-9cd4-ff7747f202ae", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:52172018-3288-58ca-84b5-81dd01142c65", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:84817018-900d-55e5-b02b-6bc82009f8ef", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws 3.5.9.tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:776325ef-7034-527a-8f72-0720b16ded0b", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dde3abe3-6fa5-5df1-855c-6925a599e619", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:db717839-2d0d-589b-b7e4-af33d0c9735f", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1f16d6e2-cacc-54ad-9ff9-8ca45e8041e6", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:aace2404-0030-5cfd-9277-5f902c7e231d", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:091671a4-47b2-597b-bfe8-f182fcb594d1", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:533c7236-5535-5d55-a671-f34bd851a014", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9bb6c372-5200-5e4b-96f7-c8c117aac189", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:22a15ce7-989d-5c01-88cd-514fb7fbe2a2", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws 3.5.9.tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ced82259-e008-5de2-844c-556cd59b61c3", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cba6447c-960d-509d-ae40-80f6e6f4b9a3", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1bbc187b-7ef1-5ba2-8a9e-47b24188c473", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:384e4f30-e416-51a1-8b8e-8adc9e80ada1", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws 3.5.9.tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0a63682c-efae-5d53-9cc5-15eaf56db05c", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9.tuxcare.1 of org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:629f5d16-5ff5-5460-bf98-eb0cd1dc5bf3", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:34337c43-b05d-5358-998d-df35cdd8cb1d", "id": "CVE-2025-48795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-48795 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:47c675d8-56c9-5824-a5bd-98ce0aca0a14", "id": "CVE-2025-48913", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-48913 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests.wsdl_maven:cxf-systests-java2ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9.tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests.wsdl_maven/cxf-systests-java2ws@3.5.9.tuxcare.1" } ] }