{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:c5f4a111-1a9d-5112-a30f-9c5ecb053749", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.11-tuxcare.3", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-cdi-base", "version": "3.5.11-tuxcare.3", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.11-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:413d0c6e-5058-5d65-95b9-ff4aad6f445a", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fd833631-f9ea-5941-8e21-b9b5563ef6cf", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0d727824-4e52-5f71-92eb-b46623e07f77", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ed50ccdb-4172-5b2b-84f6-d69a41f2e113", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3ca1942d-e398-58f9-a8de-dd7ecd2b6648", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2007a123-2c69-5bbe-8ad3-0464685ea7dd", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:68946f1a-61c2-5555-861e-1d49476dbf27", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:106f0c5a-afda-5c09-9eba-cb212d60eaf6", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c83d7ed0-854d-53bd-9303-ef6889772759", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a70664cb-707d-54ca-9770-324ed5d7d9ae", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f07589dc-6ee4-561a-b108-4c6a91942823", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:694b525f-3f08-511c-803b-f3f64fd17c5e", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ede71b9e-73ec-59bc-8588-b167b60c4d97", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ba5fe959-ecc6-55bb-b850-3c86a49c1995", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3b6491ba-2f44-5282-a800-f630de8161df", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3a79577e-b567-5b5e-8637-f7035a34ea15", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5b1e23e2-d491-565f-a061-cb09c1787e66", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:de356b44-6479-5a7d-afc6-e2824f1d89af", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5d2f0542-0a16-5a1b-85f0-562ce1a84426", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:06fdd124-4cd9-5c4c-980b-d19da1c5e3e6", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:674055dd-3524-5f63-8ce5-8175b60534e5", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bc7317e1-f395-519a-aa70-994447b793ea", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:354715f0-724c-51ea-8af8-a0ec7d55955e", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:025c1e12-7392-5733-824b-f69c2d6aaea1", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2f1a536b-2151-52f9-be92-c6a0f3f42672", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:551bde5c-7c68-510b-9a0a-cfd7162f1a53", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-base 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0f129f59-3a9d-5675-95b0-236f6d634168", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1ba0a05f-fa0e-5e84-9860-c5984fd7269b", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-base 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:51597922-c551-5152-b4b1-501cc76d982a", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3569070c-c595-587e-91cf-367d69e46d59", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-base 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:14dfa78b-02bf-5f0b-a2cd-dea6f0e93c3c", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:468ababe-0393-5508-9a04-c3af0b7f753f", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.11-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.11-tuxcare.3" } ] }