{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:51e6081b-d5e9-5134-ab87-6abec6e87564", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-no-apps@3.5.9-tuxcare.2", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-cdi-owb-no-apps", "version": "3.5.9-tuxcare.2", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-no-apps@3.5.9-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:3627fcd1-9d68-59fb-8e08-209d4304506f", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-owb-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-no-apps@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:726dfb65-c8a8-5f54-8b5a-c7b13bb2cf09", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-owb-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-no-apps@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:58f91468-dcf7-51d3-963b-a71f5be363f4", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-owb-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-no-apps@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d767985a-71df-53ef-9937-11bec6c5d931", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-owb-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-no-apps@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d00c1f9a-4d9f-5b69-a6d8-1ca58f8e6a5a", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-owb-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-no-apps@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7044d168-8c76-5545-819e-d04444e81322", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-owb-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-no-apps@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fc873e12-f38b-5f08-b335-e967f188b2b9", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-owb-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-no-apps@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5d8f3a91-b0d0-5cb6-a0ce-7ad24b3d3e67", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-owb-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-no-apps@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4cbef543-36c3-5754-a20d-926201b5942b", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-owb-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-no-apps@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:dcd77996-dbb0-5111-b006-71267a826bb9", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-owb-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-no-apps@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:dc030810-e714-54e3-89c3-adbd3fb0bd16", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-owb-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-no-apps@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:098a077c-aa8a-5ca9-bb8e-94cf239c9298", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-owb-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-no-apps@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6a0273df-aef8-563a-8781-e983b6ea2760", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-owb-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-no-apps@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:69d7b99f-8faf-5f79-b473-d305e9068c09", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-owb-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-no-apps@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bd647ce9-c276-5dd1-8366-07d674aa8bbb", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-owb-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-no-apps@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5c765255-2581-5c86-9432-32c4e4cc74c8", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-owb-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-no-apps@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3d89f3c7-2d66-5896-b473-5eacdf5043fb", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-owb-no-apps 3.5.9-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-no-apps@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ba70b28d-6beb-57d3-8e2b-4f0e4154bceb", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-owb-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-no-apps@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d009a95d-29fc-5986-8d30-b72e6c16fc74", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-owb-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-no-apps@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9cd3f5fd-043c-5506-a1b8-c844c556f83c", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-owb-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-no-apps@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4ca0d75b-a2f5-5b7f-ae1c-56bcc5910c8a", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-owb-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-no-apps@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b33d654b-d8a2-584e-9edb-d81953733a8f", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-owb-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-no-apps@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c059bc32-c015-5d8c-aed3-bf8b57fece8d", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-owb-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-no-apps@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5c5ae5bf-93cc-5e3c-9136-143d0e85b0dc", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-owb-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-no-apps@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:718f7162-ee35-5830-9d6b-6f63f6427f6a", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-owb-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-no-apps@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9e1596ad-b158-54ba-b336-e0acb3ca7f22", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-owb-no-apps 3.5.9-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-no-apps@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cecfbcf8-d9e2-5238-b0ba-45a0d62b4864", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-owb-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-no-apps@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4876c599-edb5-5a69-8674-26d1b4a2d187", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-owb-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-no-apps@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9f90daf6-3a13-545f-bd33-d3099111af2d", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-owb-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-no-apps@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e794eabf-bd18-53a9-b7a4-5b91ebaa4999", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-owb-no-apps 3.5.9-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-no-apps@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:02a92362-b197-549c-be21-a6f577da9007", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-owb-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-no-apps@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:68ea3c84-ef8f-5d39-a4f5-f4d692f488c9", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-owb-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-no-apps@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d0a3476e-b8ea-5d4d-96c7-a9f5fe4c77e0", "id": "CVE-2025-48795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-48795 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-owb-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-no-apps@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9e583a0d-8278-5108-8105-d1645ec79ab7", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-owb-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-no-apps@3.5.9-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-no-apps@3.5.9-tuxcare.2" } ] }