{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:f1b744b7-75fa-5c11-b126-718104ab8f47", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.4", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-cdi-owb", "version": "3.5.9-tuxcare.4", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:6ea2ba51-d9e8-5d3e-9407-99276a70bb34", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0a893e25-c998-5b39-a3ff-67a9801c242e", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:1a3baa6b-10b1-57ab-8420-566cac2d6f0d", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d60b53ea-dc8c-569d-a15f-e06f00989fb8", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:10a61df4-88ec-5dc0-a04d-f9fa9ad43d6f", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ce7c6c87-4a0c-5e5a-a66b-cca991fb62db", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7e7de69b-1134-5de2-906c-9188f3027802", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a5a80d9f-5c27-5c9d-b0c0-172ecff547f6", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:6fcc6524-0e25-56a6-949c-2388d8595b43", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:056f2f2b-6f8b-569d-91d4-603f3fdeae48", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:cade8154-6a0c-5afc-993b-64922dbca48c", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e4b3474c-699e-5ab1-a6f7-57b322bc2b5c", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:be919aa8-ed4c-5dda-9ef6-40f67b2ff7d6", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7dbef997-7118-5e87-a06a-18e6ab5ba0b6", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:fbf68a30-8c29-53f3-9eb3-a4b10b532590", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b73bd7bf-e30c-5b6f-b467-b0bbcad14c33", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:1fb21ad1-9580-5fd4-af93-d3e2b8343a3e", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-owb 3.5.9-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:9ee0d85f-3b01-54b9-86f0-76a2c7073287", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:6d0c96ff-d1b6-5894-a1c9-eb6b0eababb5", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2152e79d-868e-518a-aa3a-f14dd3d84a32", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8097e831-c484-5b62-99d4-94c321f044ca", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d92d5265-1d42-5ff0-9d50-f44d560c68ca", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d18cf864-5783-5679-962d-5bdbb9772aa0", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0c9c9527-f169-52f0-a8f4-bc96835e0a75", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:289df73d-096a-5c1d-852a-e91093aee04e", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:5bf6dc37-f213-5a49-b445-4f1eabcd62cc", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-owb 3.5.9-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:6eb53a4e-09db-584e-8b8f-9ee9e9d9f778", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:bb1c1c42-fcca-5d3b-a6f9-03c8c120fcf1", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d985bde0-f4ae-5c3b-b764-2ee8f29b5df9", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:db5108c4-5880-5de0-9657-39af7e3ad65c", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-owb 3.5.9-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4737c594-0551-5763-b93c-548453936bc3", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:93da047e-2c4b-541a-8b4f-55282c68a067", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c6900408-7035-5d0e-9be0-cb26cfca5ae7", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8a0bb9d9-4331-5059-9a58-bd7f9156e9e7", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9-tuxcare.4" } ] }