{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:09fc422a-32b5-5c19-a166-2dc8cc397fe2", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-multiple-apps@3.5.9-tuxcare.3", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-cdi-owb-multiple-apps", "version": "3.5.9-tuxcare.3", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-multiple-apps@3.5.9-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:b25ce31e-d709-56ce-96ed-bd1404afb707", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-multiple-apps@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:60b22d7f-496d-5f56-98e5-d9cef01a3f1f", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-multiple-apps@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:79d91288-8181-5db4-8d33-153bb79baf18", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-multiple-apps@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ba2c012a-01ac-54d6-85e5-e3c597cf7493", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-multiple-apps@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:26344403-c1ef-5552-8b05-47948c7e33af", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-multiple-apps@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6d3aae7d-cb6c-5eb7-8e91-032c80ba9cf6", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-multiple-apps@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8fafaf15-99bd-511c-b29a-87bb324eda4a", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-multiple-apps@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f1188125-fc34-5ec1-af7d-df746f1b8e3a", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-multiple-apps@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5f4ba541-2bab-5af3-8ad4-f08bad417b95", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-multiple-apps@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:61407211-558f-5c0a-942a-cbd1e1c9d46a", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-multiple-apps@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e00473f3-e0c9-52ca-8560-a267a1f56a1a", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-multiple-apps@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:382136df-03e3-50e8-96cd-6dc9a73094c7", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-multiple-apps@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d02a49c2-75d6-5cf9-b9c9-56fb108af5b2", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-multiple-apps@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4a43db3a-9a92-5b90-ae7f-1b8da3611760", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-multiple-apps@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3433efad-a275-55d8-aa11-c116172fd973", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-multiple-apps@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9d4ebb4f-59eb-51a9-b7b2-20072f4da1df", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-multiple-apps@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ad1dfe12-cb2c-5405-9dd2-ac52f1c32846", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-owb-multiple-apps 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-multiple-apps@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f792a83f-6ddf-5efe-ad4a-958671dcba40", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-multiple-apps@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:873901cc-34fd-5294-a3b8-df55e05dd400", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-multiple-apps@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b41e07f8-f278-520a-a1ab-937cff150f2a", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-multiple-apps@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:537b89c8-ca5b-59cb-b666-26d630b068f3", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-multiple-apps@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:87669c42-0108-536d-8d83-ba989643330c", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-multiple-apps@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e2c7f2e9-721c-5170-9d66-4980a31545d8", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-multiple-apps@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bd83828a-3fb0-56ea-acd2-6df82d5f1f17", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-multiple-apps@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ead5a9cc-7879-5a0f-b54f-df7b1930153b", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-multiple-apps@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:36cee7f3-e1a9-5609-a008-cca8219cbc4e", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-owb-multiple-apps 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-multiple-apps@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5637ead8-63dc-5b4f-b73b-4fd39b23091e", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-multiple-apps@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e20ea051-975a-5600-944e-21bd87d867d7", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-multiple-apps@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ad95c623-3cd1-53a1-b5b8-690a96f7f97e", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-multiple-apps@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a2669445-2ca9-57f6-9554-a4f4fad239fe", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-owb-multiple-apps 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-multiple-apps@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c234114d-8875-5777-b21b-b00974f36006", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-multiple-apps@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2881be36-1ebc-533f-b04d-08c547b19389", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-multiple-apps@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3363a333-3240-55fb-8f89-542e1e135c75", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-multiple-apps@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f5342b6f-38b9-5de9-8129-1521240ccfef", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-multiple-apps@3.5.9-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-multiple-apps@3.5.9-tuxcare.3" } ] }