{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:7604addb-7266-551e-9930-b6ad9e8986bd", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9.tuxcare.1", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-cdi-owb", "version": "3.5.9.tuxcare.1", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9.tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:335693b7-6804-552f-b991-196f166de3f2", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:35eba39c-c166-58e0-9f18-2bff5fa8d4dd", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5ef9120f-558b-528b-9813-8e901d954032", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:581ab284-a39f-56fb-a3ae-5c5cbc839295", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c645aa32-18e5-5b34-a57b-c535269383be", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5adadf70-be23-511c-b066-423149063ae9", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:76f7387b-cfc9-5ddc-b444-af3605a91c24", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:46fe6e8e-fb74-59f3-97d1-ce3c7f0c2c61", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:16532385-c9c1-5f26-93c2-9f69b6380488", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:aa33e208-046d-5665-9f1a-c9c4e524385b", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fb8f4680-c994-5326-b235-5111114a5b97", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9e851c0e-0ef7-5eb5-9983-2730551ec6a9", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:866aba01-a013-551c-bc87-499f0a603cbd", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:412bece6-60d4-503b-9307-b791b08e0cb4", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b7215558-d7d8-530b-9a29-1358f28bf478", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:442383db-f4a9-58f9-9229-931be25d5ead", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:17999551-8f97-5d25-9231-28157aee9cbb", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-owb 3.5.9.tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1d0c03bf-4150-536e-8f3d-3b1337beeb86", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0158ea86-d92d-561b-ae0b-b1e786376d76", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0f555d2b-4d7d-5cd4-a30e-1a58dfa37dcf", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2aaad4e6-8c08-5076-b13e-466255207697", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b9326bbf-9dbe-5121-b2d8-4a2d18488bac", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ea978f1a-b3f4-50cc-ab72-af2cbc2426e3", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:824dc34f-64a3-5d6c-abcf-f51d64cf5f57", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:db373076-8571-5062-a4f8-93e3d5c5b049", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a2e0c9e8-e2f4-5884-ae7f-be1192048936", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-owb 3.5.9.tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:83f1b2ec-872c-5bb6-8b13-5e26505a0cef", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:548c0a1f-2cd4-5968-b028-4a48ba69b2d6", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:22d4250f-a83f-55d9-a732-3a45c91390cc", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e06b57fb-bf64-5392-80d4-1ea893f943d8", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-owb 3.5.9.tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:21033716-aa43-5f80-b8d4-65dd3f624791", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bb575b49-4894-5cb6-97a6-c22ed36a5d9b", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:510f4659-e94f-5e78-8078-03e46bd631ab", "id": "CVE-2025-48795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-48795 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8b903ac9-79ab-53fc-b5ea-f1198cf2d9ef", "id": "CVE-2025-48913", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-48913 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-owb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9.tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-owb@3.5.9.tuxcare.1" } ] }