{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:b8c99ea7-1438-5355-818d-352cba553311", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.1", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-microprofile-tck", "version": "3.5.11-tuxcare.1", "purl": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:e1525cab-c3d2-53ee-b7b6-b81f0da1a308", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f2b798c7-381e-5542-87cb-b088cf8c0a1c", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:29469342-a05e-54ca-bd30-256d57ec4a74", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4cb94bed-795b-50b3-a94b-fb41e7d0c22c", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0d05ed4f-7403-56b8-b8f9-6bdfadaa3eef", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d5d8c1f7-eee6-582c-b22d-c89a60b1acd0", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cbb8966b-d7d6-515c-91c4-b923706034b4", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:458a116d-fb6a-5ca7-97b7-1e89cb4a4d4f", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:80543b53-eb1f-5dbd-8313-5425e54a4c54", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5e03cd9b-0c1b-5d62-aee2-e369cb0887e4", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7bc8aefe-c74f-5c9b-ad7e-a64681d0414b", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0df30ed1-11fe-5293-94df-320b080e1213", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3a17ecc4-be62-5cda-a274-a55779b39f39", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9a9241e8-d4bd-5f28-a405-bd0e7f52f800", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4bcb828c-1f92-5715-8996-d34dafe6dcf6", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4ab6b6fc-ea49-58bd-a552-b995fe29e284", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6d45a711-7058-53ae-b11a-c451601ebfc1", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a1987ffd-ad53-591c-8757-3243b3a3a5ca", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0a426826-26d2-5084-b797-f32fe07b1d7c", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b940be32-f1b0-59fc-8c64-64ca376938fa", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c03de895-c9b4-5871-8445-60a04f60d61f", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d3970110-f77e-535e-89fa-7e2e6f504af0", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9c630ea2-2796-5f4c-b0c1-78034bb8364e", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7d54a098-db71-5215-b616-bf2f18eb3e08", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0af17dd3-e1cd-537c-a0d7-660a0cc89545", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:efd0575a-6ee4-5151-a737-cd208a6abc84", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-microprofile-tck 3.5.11-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f6d1979d-7c08-58f8-b44d-447fadbce819", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3c0bff8d-5cff-559d-9fb9-0c04b97d9071", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.systests:cxf-microprofile-tck 3.5.11-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:58308116-1749-5027-aa6e-b686d751a8c6", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:491855fa-f2db-570c-aab0-b2392fadeb2a", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-microprofile-tck 3.5.11-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0a233ecf-c159-50c0-a589-5b2f5484733b", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b8d74678-b23d-5fa0-b5d9-460d11a8ae56", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.1" } ] }