{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:2b63ccec-cb81-5582-bc6c-2af7427a5837", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.3", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-cdi-owb", "version": "3.5.11-tuxcare.3", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:f00ad73d-484c-5ae5-98c7-a621330a0b97", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ef9f0f5c-1f14-5820-ad99-01bb93b74e9a", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a3650d5d-fd36-5523-94c3-e1f6391e6e92", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:477838ce-ba26-546d-bf7b-687fffa0333d", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3214759e-f99e-5e94-88d9-3bddb77e78af", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7fd115e7-ced4-5e96-8564-fdd6df5b2ecd", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:995a6277-6f0c-5083-b41e-ac8f2dca2d91", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9aba6c3e-da3f-528f-87c3-d5f1f0864efa", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3ffa3cf4-c487-5191-98bf-dc060a1c8cc0", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:af143378-a940-547a-816a-74bd39b9d303", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:91fbb65e-606f-5e94-81e0-7d68be0ecc4d", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f663ba21-8163-5260-962c-b1482ca716d4", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:25b91fae-806d-53d4-a1b9-edca4b23c27b", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:29b1605f-80f1-53cb-a504-a8123211e5a8", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:32395009-60a4-5191-b65b-43d911637a83", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:17017acc-8c15-51a3-b905-92ce3e171ce2", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c7e54f7e-2a0f-5f21-b3f2-bd724027b8e3", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b66f1d55-42e8-5e11-b778-dc3554ac30c1", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e30de82f-b94e-59b9-be56-0c03cf2e33d9", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f32339a7-142c-535f-813e-a73c53265a6b", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f93e766e-9bb7-5557-89f8-8ed43004a3c9", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1d13b330-b0fa-565c-a813-8467e64c421f", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e94c64d2-7610-5190-b3c5-dfc209827263", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bab9085f-919b-5700-a0ec-7494f158ab34", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a7be2aec-e7d0-5e87-9a7d-0b42174e4697", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f93aef16-a29e-5aa4-a7d0-c54b7af4fa80", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-owb 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2eb52b63-6a79-550e-9e67-13313ee6e72a", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:77943eee-865a-5628-a98f-c620aa72df8a", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-owb 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:89f76fe2-7d63-5893-a722-cc0508705b7b", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:71cee798-850f-5a19-9b36-3ccd7b8e8dd2", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-owb 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4b0b58bc-b73b-5417-a6df-02971ac824fa", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2fcd3b07-ef9e-554e-b4b3-40b7a46ed322", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.11-tuxcare.3" } ] }