{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:2af39416-8b6f-5a43-9aff-b9895a9b0040", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.3", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-cdi-owb", "version": "3.5.9-tuxcare.3", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:e7a019f2-b465-54de-9b9d-360c46723680", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fb227249-30dd-5aee-b15e-e525f7366210", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3a1687f8-c81b-5367-9af0-bc630f796019", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:da932011-7fd5-5f38-ae17-23c50be3a75d", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f6c934fe-ce3a-528d-a206-dfc027009a0a", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a209c1b2-b0fd-5d9f-aa80-980a3cbe5ae0", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c42f2100-1d84-59ac-96f8-1155e9989a4b", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f02a338e-6200-5e6c-bb60-930d896b7d8f", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b3240470-adb0-52d9-a167-1083080c4735", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b88a1d30-69f0-544e-818b-9f32710d5cbe", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f64aa718-1b84-5912-8bd9-db601abad7aa", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:925bcf05-6705-5a14-b908-12e89eb257b8", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3d75528c-1b18-53ae-a317-215f2498f9f2", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4ea0a882-9137-5fb8-b0cb-b1258f8b9f60", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0a3a2b8b-40e2-56e1-a122-b642580b8f06", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:55c750d3-e12f-5a12-9c18-353adae771d9", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a68dff83-a31b-50e4-aeab-96a764816e85", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-owb 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5c88f8eb-e713-5567-b11e-091392d0fcdf", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c32b6226-9565-5834-bf2a-c2d4d37be5f5", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4eb8d966-78df-5990-986c-2d349669d68e", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bd2baef6-e106-5c70-8cc8-03e8a318fb32", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4891b4e1-8ad3-5b0c-930a-b56f1f50dca4", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ff540ae2-10ad-57b3-861f-3762b0d54391", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:81efba81-832b-5f47-bcb4-70a95d002dd9", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7e49582e-43e4-5966-90c5-7a84e94e63d8", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:32c848a2-e8a2-59af-86c4-b5525e7cc6d3", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-owb 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:86c73fb3-cf91-593e-945e-24ebca245865", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a8ed7702-52e7-5d28-a9dc-fd01c081c344", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3449b939-0dd8-5164-8fd5-fd5f60cb6e14", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:59b23915-f806-54a8-bf88-c903c559f024", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-owb 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:eac815fb-1bcc-5ae2-b891-a1f242331a27", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1dd5fe87-d791-576b-820d-c40300b50d03", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4f68d887-b894-59fe-a1a0-5e7844ac2302", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5f9f32e6-6cd5-59c1-b3e6-aa57106763b8", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.3" } ] }