{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:27671df5-99bd-5835-a512-b86e929ae878", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.2", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-microprofile-tck", "version": "3.5.11-tuxcare.2", "purl": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:5c9af42c-aa68-5adc-9da2-022bc10c1f34", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5220d176-deda-5161-9723-e37461d260ac", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d362d541-319f-5d6e-8b27-d2c3ffaa7dbb", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f7137f5e-767c-5ed7-b037-29f8dcb0d544", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3c7b52be-5a56-5095-a704-e1ad3361b461", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:180f5b94-1e9b-54b8-94b5-01df2f63b032", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:266d8cc5-b868-5ca5-9ac5-043b5da6c726", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8415e00f-44ae-50aa-b9e0-619426613dcf", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4d090d55-a0b7-5a8d-ad3b-f36a16f85b0a", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2fbd58da-0381-58df-92f7-0356a3c6ac88", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3c8f7b70-eba1-5d83-aa07-e8f6693be5bc", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:49070fdc-7043-5f53-bb9e-5d8e7a8fb3e2", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2757cf42-6122-54aa-b77a-11506836a681", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:268a0ab7-eeda-5c1a-b667-a957d602f53a", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:65627ff6-f9f7-5e04-92f2-e7c0d8db7866", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e7df741d-5123-5a49-a68d-dfb277bba8bf", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:968d4056-347c-543d-8a4d-342098edb90a", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f5bae349-da2d-5c63-9b50-e9908fff215e", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:105c5ad0-4d6d-5de3-8821-fae92e48b55a", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e306e346-6313-5ea5-9bf5-e40af87f4b2e", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c440e466-2284-5001-98f3-847c910ba4d2", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:345f78ec-cb0a-57fb-b511-d154a7796e7e", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:95818eee-ec7a-58fd-882d-2ca094fe6ce4", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f82d612d-8034-5ced-b981-c9a09f801ead", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:dce1ed9a-1004-5260-b2ec-1b3133ae51f7", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:50570667-e998-5fc3-b7e7-7ecb4eccdbf6", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-microprofile-tck 3.5.11-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9b0ddc13-d97c-5263-9317-81dd580d19d6", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4364bc5a-ffee-5245-acc0-4c97c14f1c5e", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.systests:cxf-microprofile-tck 3.5.11-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:55d6211b-7a47-5be5-b727-faba74ad6161", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a10fb92d-b742-5bc4-8824-cdf0b92144ad", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-microprofile-tck 3.5.11-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c4c002cc-e3e8-53c4-bcb2-3b744d0105b4", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:880fac73-0e44-5bed-a6f0-df63f4cc0647", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.11-tuxcare.2" } ] }