{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:442a218c-1ffc-5456-a1cf-2e9ffa0036ae", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.9-tuxcare.3", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-microprofile-tck", "version": "3.5.9-tuxcare.3", "purl": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.9-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:47180e90-7e20-52ec-91c0-18f8f75290e3", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e80bb68d-7c3c-5670-91f9-5f3d5a1c40ba", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:dcb6bfc9-2200-59a5-a444-495e329e8f8c", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9e0cffd1-e0dc-553d-8581-773d457f593a", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:be1f0541-01dc-5ea8-aa08-e1eba55419a0", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3c8438d9-d823-50ce-8e2c-2cb8850a7944", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2c93a52f-a107-5d8a-9098-8a1c77f197c5", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ba4a3fa0-b6d0-57ec-9218-489700da80be", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e3768c66-fd1d-59cd-9e88-0a0f8d31d2b8", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:00f5d59d-a7c6-5ddc-a521-e05081350cbe", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1f450cd0-a44b-5f84-95cd-2f9ca0601080", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f43c45df-b21a-55e3-b364-3fca97fb11d0", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0460a37b-e717-555f-b7ad-df006cf39c94", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3f413b79-75e3-5e76-b76b-760a5acce104", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:dd32e4a7-ddc8-50cd-ac66-7350f2e22b35", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:834b799c-f62a-5142-9371-677a6684db8c", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ca41978c-2cc4-561c-8118-bd6f06ad7129", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf.systests:cxf-microprofile-tck 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0b7d23bc-118d-56fb-82bf-8fc48fce95b2", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ba5a315d-41f7-5a1e-9890-6969074373a6", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a901a576-392f-5d7e-970c-74d40322338a", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e1fd5440-9881-53d0-9822-1dd5393b3ff4", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:16df13ec-0b77-5144-8421-fd76a8d8483a", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e4774255-4d38-5e56-ad72-76ad68612382", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:476540cd-a9e6-555c-a899-68155606c34a", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c985bceb-fb46-5564-8d90-8cf780d0a90b", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ebadb11c-28b3-5bf0-87e6-b4f4bbb23874", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-microprofile-tck 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:db82e949-aea3-5e4c-889d-a899b977a191", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5eba62fc-33f0-5226-902f-4a174bd0b14b", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f9569cba-c056-562f-8ee0-30017559795c", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ce89e8af-bd6a-5c07-9b7d-ac766bb9c76c", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-microprofile-tck 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:cc8985a3-99da-5b7d-81b1-73909b5dfc78", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ffa6a8c2-e11d-55fa-8051-bca71cb0a375", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:eda49350-3a48-59d8-8371-814ac5f3d9e2", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c3b137c2-6418-5d5b-a939-2cd900521800", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-microprofile-tck." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.9-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-microprofile-tck@3.5.9-tuxcare.3" } ] }