{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:95b9404f-1bab-51c2-b1ce-9251c872daa0", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.4", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-cdi-weld-multiple-apps", "version": "3.5.9-tuxcare.4", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:7ae870ea-5e94-5485-ac8d-0711675be1b8", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:506a68ce-d8bc-55cb-a546-ca157e9c1834", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3b50e026-bbf8-5a8c-b632-937ff24184f3", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e0521239-e9b3-5d93-b6fc-6852d0c14db6", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:945caa3f-1648-5ac5-ae3e-725386a7bf40", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:718b8d16-c5d6-5cb7-a53e-558565fa8bd2", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7d519ae5-691e-565e-93b1-44af8548d4c8", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:825ff3a8-b1ea-5589-9dc3-c0f30132b031", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a68940e6-ef70-5920-894b-1c34acdc50ca", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:06287b72-47cb-53ef-9943-ef83822bdfd8", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0035227a-7973-5135-900c-858cebd01a81", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:034e81d5-77d5-595d-8ac0-7c07aeca7827", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0a4eca5a-0ab9-501a-bbea-a0117eb67376", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:169ca9c8-168d-545b-813a-7960f5dd8a05", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0b0fd6ef-c5a6-570c-bb7b-1a573f8b431e", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7fb5bb15-2e61-54a6-b0cc-3cf37d4c8831", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c9f6174a-85ec-51ad-aa00-cba8503b181f", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps 3.5.9-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ddbb62a0-eb6d-5fd0-bb56-6141c7b40076", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:dfda83fe-71c6-5791-8546-c6f6d436810e", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7994eb65-1001-568d-89d5-9d98779f28f7", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7c0fcd2d-1f00-58a1-998b-825d3381d9f4", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b973f9e7-cb6a-5dcd-b950-486815d3c065", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4e55e787-44c0-5db3-b49e-e865de28fbb5", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:74445311-aa39-5032-b45e-f4e6f5d4fada", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3e39cb3f-a33e-5cec-a997-fe5533581577", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:76fac3fc-3ef4-522f-86fa-cf283fa076c1", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps 3.5.9-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:fb64556c-7ca6-5b99-b047-c349e513eec6", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c94d3530-edc6-565b-93f4-a8499dd9f2f2", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:75986d5d-f79c-5dc6-8dbc-84b756157322", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8cd3888b-e4f1-5e16-93ca-b4c187f68043", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps 3.5.9-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:6290fa9e-7152-58f7-b28b-95fa994a1a06", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7de05c12-babb-5c41-ade7-d5f9bde8126e", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d0fbcb49-8028-547f-8db1-dac2824c739d", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ec692b25-0a3b-5834-a0eb-fd6b7d9faafa", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-multiple-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-multiple-apps@3.5.9-tuxcare.4" } ] }