{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:73b07ced-d0d1-56b8-b8c2-b4212eebd65e", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.6", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-cdi-owb-producers", "version": "3.5.11-tuxcare.6", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.6" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:151b9295-167d-57d2-aff3-488c7f681704", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:b6d0ec8e-ac4f-5fe0-9c84-413c222beff7", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:dd045c68-5ec3-5059-a18b-724a58954aca", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:a5839980-5d4b-5fd7-b016-5b9cac0a8135", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:60ff3703-186f-50ae-b7b9-6e54511a5fd6", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:52fb1ee8-d835-5142-9899-96ac48fb4c48", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:49825293-e21f-5bba-b813-0659e778dede", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:5fd5077d-b903-5ea3-866d-8dab3453955e", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:0a278c30-5808-5c20-935f-ba4c29295346", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:b97102eb-d252-575b-ab03-38b8d8c30be5", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:4dad7d5c-5301-5001-845f-5de3eddc644b", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:3e630e6e-3cf5-5fd6-8fd3-414bbad7b03a", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:c68e2915-6d84-53f6-9836-bb98b064a9ce", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:75129a42-aa63-543f-a825-03751075bd75", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:dec7e88e-89ad-5842-a132-6e9c72485ade", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:051d25df-3959-54dc-aedb-280668e83455", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:4e54edc8-d7e4-5285-b9aa-2ff37639c775", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:a157f2a8-158c-5734-94bf-cb981b80aadf", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:518f5779-de74-5b89-bff3-53775a4baebc", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:9e9f813f-f700-5399-bc92-7948e83f5f53", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:c660001e-ce83-5811-b6b9-a08a5a8a6d9e", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:96df8b71-b493-54f2-af17-1f3cde5dbe63", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:d35c8212-e65d-5560-902a-907d150365ec", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:96654469-8bef-5997-9e79-4f1580b3094e", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:5f7902e4-28ca-5c72-af98-1470674f9983", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:5abdbf03-e3c4-5766-b75c-0934172851d7", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-owb-producers 3.5.11-tuxcare.6." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:bc685310-5bfe-566a-bdee-2b9c3e71e5ed", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:de6e22e6-c58a-5a02-9b8d-79279cea2c8a", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-owb-producers 3.5.11-tuxcare.6." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:6df00f98-3c34-5b46-aeaa-56886110c948", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:275db825-92d7-5dd1-a1ec-9e751f77f81a", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-owb-producers 3.5.11-tuxcare.6." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:f1b47d45-9e71-54f9-a30c-952516868ddf", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:93a24312-489d-5c13-8c71-f44790a425ab", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.6" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.11-tuxcare.6" } ] }