{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:bfc13b07-d517-5e5c-9129-d2e7219a1227", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.9.tuxcare.1", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-cdi-owb-producers", "version": "3.5.9.tuxcare.1", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.9.tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:5e678ec5-3c1b-5f88-991d-ef3fe3e16dab", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:86ff312a-de64-5e93-94d3-6527ea261514", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bfc3cca4-e2e9-5616-871e-04bd1506b62e", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2cf18210-f20a-5435-b9ef-a0e05f99d7b0", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fc7e5791-3e38-5df8-959d-5ec5d289c57c", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:deed804c-a695-55df-9ec4-f470bc7b614c", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5ab64ff2-48d7-5c0e-a9ce-565bb34ebc20", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c53bda64-b836-5be4-ae65-e5915575cfc1", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ddd26769-79c5-5be7-bb50-6b919264530a", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f6cdc6a6-90d9-5482-9d30-e8cf37698f27", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:65cc9207-8ecf-51aa-93d0-f860c70f4e55", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4c2ca0bc-c8f6-5866-9d24-37318bf44d19", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9a08f50c-503f-5433-9362-312a94c0661d", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:74728cea-ad80-5ddd-9a7a-8ce5b6e01d22", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3a1114ed-ed58-5925-841d-172491cfc298", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1ef95ca2-1eb1-5223-9e58-5146a1451270", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e18f492f-6662-5f99-986e-e16a0a64f1ba", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-owb-producers 3.5.9.tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6c82f946-056f-59e2-843d-97cb6361b685", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8b5c4cf3-52a9-549f-b4b9-8b475ec46429", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ce08cba8-5ded-516c-98a7-9184dede5245", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6b740e72-405f-5849-9ac5-4ac02ca0e4ae", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e5fefc77-5907-5440-8b5e-cd124b5805b6", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7ba4f044-b4ce-5db8-b2aa-0a3906f23843", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f4617534-531e-5fb4-93a5-dee2350e5642", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dba65f2d-e233-5e78-a0ea-e500a260d5e2", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b51e3513-52da-5825-9c45-54645381d89d", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-owb-producers 3.5.9.tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ef313d03-02d1-5c62-a91e-cc9ecf59b886", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c6710040-9d47-54fb-8eb1-859bc2ac835d", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bd327262-2c78-50aa-9076-d2b007c75b1d", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:20f6d069-5808-52e7-9af8-6492b8d9c100", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-owb-producers 3.5.9.tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:50d8e554-ecf7-56c5-9eff-98dd34616321", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1f084946-be86-5530-bf9b-2b515e3de3f7", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a6595c95-7420-5418-abe5-eb1ea60a6430", "id": "CVE-2025-48795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-48795 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ef61def4-0fd3-5f3b-af6c-359aec89f255", "id": "CVE-2025-48913", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-48913 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-owb-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.9.tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb-producers@3.5.9.tuxcare.1" } ] }