{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:218aa152-50df-5497-a681-89bcc316ab37", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.2", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-cdi-weld-multiple-apps", "version": "3.5.9-tuxcare.2", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:aebe4a9d-6ba9-533a-a748-ef51ccef7ff0", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8afa8183-2b96-532b-9702-389ac2900526", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6cca9702-acc5-51ee-892e-b3fd7d0b7aa5", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:48c35f44-21ed-5234-94de-6840e3532595", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ee1dc5fa-3758-50a8-b09c-b28bd0a73a96", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b625676a-6d32-534e-8950-284dfcfc44e6", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a0ee879b-bd01-558b-b116-dff38b90fcb2", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cceca50b-25aa-5298-9c47-bbb963b4ef70", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:990655c7-5fb4-58f7-8b2d-d12857be0cae", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ec6a5b4a-3cf4-58f9-8f48-47d2ede084d3", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e9f9de60-2389-5044-90e6-89cdf17fe4f5", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bcb50708-9194-5f4b-b12f-220484a5e3e3", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b7006856-fb7a-51d9-a492-9c2897d9aad6", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:94ba7842-2ba4-5dcb-9e22-eebe738d9e6c", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:431390bf-cd43-5935-88c7-a7fffe4c40c3", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ab40090d-04bf-5711-a6cb-ab4bf701d6aa", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:dbac63e7-9ebb-5118-a768-3e3824eeadd9", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps 3.5.9-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6e392641-9aed-5b9f-a0b6-adb44f6ffb72", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f4b38596-d498-5f66-b05e-479e04e4806a", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:31049aa5-fd04-5efa-b659-b3ad905d48ea", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:efba68d6-6d60-5599-88ff-36652955f4db", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9f8da228-69b1-5249-af02-c020d1f5c636", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7ec6a294-fac2-5980-82cd-d7c0c51a4b53", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4ae72362-53bc-56b0-9f4c-cc12086e4764", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:aa8cac30-53a2-5f9b-8082-e7823c7c3730", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:843e21a6-0c27-52ca-9a98-b2b114ade7fa", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps 3.5.9-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:afbd3c00-9c33-5517-bb85-ec9a3249506f", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0bd6df92-a538-57c8-a306-3e9165be4c46", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5f06f69e-0b89-501e-8d2c-2c0682f93b6c", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5ca508ff-bbe7-5442-9ed3-868d6bc8469e", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps 3.5.9-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f5adac85-a950-5dc1-860f-22b3d36e0c3c", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:776a1a71-5d72-541a-98f2-d8c1ce4fa451", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:11c87cbf-3803-5af2-804c-f33f9cb7cbfd", "id": "CVE-2025-48795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-48795 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:af8d7d0d-8434-580a-a168-2741ec2e473d", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.2" } ] }