{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:36d6f6e2-fcd2-5c19-bdd3-97f3987f8db6", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.4", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-cdi-owb-producers", "version": "3.5.11-tuxcare.4", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:ae94729b-d3ec-5f0b-b014-daedbd600c25", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:459f5f14-2096-5951-b8f0-47c71c2b9d75", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:206f4e8d-a743-523f-98ca-7e1e68042fa2", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:5b9fe8f8-c33a-59a2-9b47-44818cd78603", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4f3bbd1f-376b-510c-b8c0-1cde057c8064", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d4686693-0e96-5203-b4f3-6548e175910e", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3ac1cf1a-6475-591b-b3ed-2a615dd8ea2b", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3a9eb6c4-97ae-53cc-b486-f02d6e61ecd8", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:60d58e23-864e-5fd2-aae7-ac5a729f0218", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d6022952-a34b-5a6e-bdc7-60ceb93887a2", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:92d269fd-252c-584a-a3f6-5c12bbf77978", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:44158806-6db0-528d-ba49-eff5612b3886", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:edf89bc3-351a-50dc-ad56-d8c3e38716cd", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b17fd9a5-5cd4-520a-b76d-db003f68ce8d", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:77875f4d-3a0f-57f8-91ac-028aed8645bf", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7441ed9a-6ebc-5d69-97f0-e8e813ea6e8e", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:1825e6fa-374f-555d-8de8-1f6511305ffc", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b90c42df-9180-5222-9872-46ec47803520", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:53883ffc-315a-59b2-9d82-b73c2597299e", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0179bcf7-0ad8-5ca8-bff5-25306cd4c54d", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:cf3ad237-9deb-5390-87e2-c057cb2ef673", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:1b71b6c0-08d0-5763-828e-f9b8d23466cb", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f55701da-3556-592c-b9d4-8eba94913a70", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:faa55078-d7f4-5865-b96d-3305c0b5ed0b", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:622e52a1-fe5e-5c46-95aa-d3a4ab17fa5e", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f3473e5c-5197-5395-87a5-5925be660328", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-owb-producers 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:be6a8e21-7ae4-5649-8220-379e4029507e", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:46ce3333-aba4-5778-a8b3-ca1ec14d68ee", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-owb-producers 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d5e9b82e-a1ab-5ba3-b3e4-f8f2a68d1b42", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:35f04142-0854-534e-8c83-2d90777ac477", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-owb-producers 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:fff9c0aa-427b-58d8-bd63-23f960bc6fb8", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e5944f69-6412-572b-b8c4-7bda4ff2db13", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.4" } ] }