{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:e701f9cb-e0a2-53e0-96c9-5782b245943b", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.5", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-cdi-owb-producers", "version": "3.5.11-tuxcare.5", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.5" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:24bdf118-aaa9-5803-b796-e41a344b6279", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:89bea204-12a7-567e-8c27-1fcd57fa14a4", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:e36738a8-568a-51d5-a63a-0293c9e4aa83", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:396aeaf3-a5b6-5230-b6e4-7c0ad964f341", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:7fcba331-94bd-594b-b820-47598e78f826", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:fd186f6b-6528-5981-b21c-39764071a6af", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:104f1832-f8de-5bb7-b9cd-7af7ac6146d4", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:1d92bc71-05be-5900-bbe6-ad8a9711e4f9", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:2a9e8f0a-7433-5823-8bc8-5c1d1933013a", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:981d06b8-b7ae-5113-802e-b201996ef119", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:d9726d9d-7b59-521f-9ddb-7987de2cd619", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:81d11f89-68c5-5230-984b-23080211ddae", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:379dfd71-d701-5e72-8d2b-6483c1b0685a", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:757c9e6a-904b-5ee1-8490-f6155781a0fb", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:dabca662-3e63-5cca-8137-640a58ab2700", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:9ae98491-a811-5f75-82db-1a5bc90c561a", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:99cf33f3-c38d-50ec-a853-c84d6fa872af", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:17f98f78-528f-5816-96e4-27b35c04a63a", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:08b6c9cb-6915-5f5f-8086-8b910c83940c", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:d46b66c2-f5bf-5a87-8d38-d3194d4b90b7", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:087ea6da-c312-57e0-8fe8-bd5c8af59f7a", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:e0a7ef4c-7f2d-5aeb-a784-5ad962e80a36", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:d79de6c9-607f-5804-ba98-4a83d04387b5", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:9e9d577a-3450-5eeb-8ca3-157d1004efd2", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:01d62f89-7d75-570b-9211-77bbc9234f08", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:5b717f1e-0954-5962-a090-405c9f8d3e2f", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-owb-producers 3.5.11-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:471a7e51-4771-5f11-aab1-7e16a18d1ffd", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:d4487cfe-2ca4-5179-981e-e2952cc6dc2d", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-owb-producers 3.5.11-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:e76d2ff7-bab1-5826-be88-4becab1bc823", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:fb4a9414-3338-5b8b-a2ce-7b84fc8f4de0", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-owb-producers 3.5.11-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:3b929aaa-7210-5ac5-886b-30906c1c955c", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:0104053b-159e-5398-9ead-1637223534c6", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.5" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.5" } ] }