{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:49258df7-5af6-5a7d-8267-3be11b1ddcad", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.2", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-cdi-owb", "version": "3.5.11-tuxcare.2", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:190bbac3-2607-5960-a015-3f21c13c6462", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a9a4a461-ad79-538a-809d-beb20ecdf209", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0e7e514c-b694-5ff6-93a4-66878c068fc9", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:80dcb3a9-7bb8-55db-b21f-6b03b207f962", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3aebbf8a-b2b1-5828-83bd-36b2bace0aa4", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:be2830cb-0d95-57d0-aff0-a75bf4ba2efd", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c8490c83-6da8-5564-8ea0-56a79b1ace47", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2687f7c8-4170-52f5-bb0f-3465fa4530bd", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:dcf1d74b-8c1b-5098-8fd1-57d5e088bc49", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:97ce156a-5606-579c-8eda-6c0e077c0975", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4bd90853-06ba-5dca-aa36-bad9d8b522cf", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1764188b-306c-5081-9de2-47b8ba73a70a", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2f1974fb-b25e-5923-806e-7ec834afbafa", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:811ffd79-a993-5d52-880a-28ae9f25183a", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f6189845-875e-522a-94de-f424512b40fd", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7ea20e93-3f11-515f-90d7-3ecd7b3b3db7", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c1e77135-ed3d-546d-8633-b4f2800e2fdd", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8024b5c6-d0af-5c06-98c2-062f8c17858b", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:214bf57e-59f1-5717-b7af-8eb7eb9937b5", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f0f8ce0f-39aa-5f84-8bae-ff33ccda99d6", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7d43012b-a5ef-566a-af2e-a6034b68e072", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:30057dd6-00a1-5c13-8512-00cc0fd45618", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:36da63f6-059a-5ea0-bbf4-78a0cc561a18", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8ee3af90-a39b-53ed-819f-c363591fb703", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5ea921a1-48e6-55d3-b27a-b46962bf2838", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:dbfa7e85-3d0d-5026-bcb8-e47a50a0ea7a", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-owb 3.5.11-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bc375d62-5203-5fc1-a0f1-6c493d162901", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:115cadb9-6557-579e-8994-d2bddeca00b1", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-owb 3.5.11-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:be86734b-de4c-5a2e-8c4b-a5617d61b5a8", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1479bac8-76ec-55fb-93cb-e62d2a2fe2fe", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-owb 3.5.11-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b184b146-95b0-5a0a-8e35-1db35f46760c", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5573f94f-1089-58b7-ba5b-25fc24910bab", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.2" } ] }