{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:caff1fcc-d93a-5697-b0bd-9569c972bba6", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.11-tuxcare.4", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-cdi-weld-no-apps", "version": "3.5.11-tuxcare.4", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.11-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:30b32635-3579-5078-a5c0-e24227e7b2ad", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:62222604-8e1f-5cbe-9618-4c5581963015", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:6ccb2783-77d3-5605-b20e-8bde9e4bca2f", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0cac1fa0-bbc3-5df3-ae9e-63ccb360c13d", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7de78957-4d89-5a32-bc23-dfff7ae8cd7e", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:584ad739-3c7a-57f3-8d8b-b0e6047bbc25", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:177f8775-751f-56ca-8024-33233e726399", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b40f0478-ae02-58c5-b7d4-7f01a77931da", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3f04a13d-647e-5215-96ab-54764b33b7a5", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:844f1652-eb2e-58c9-bf7e-eecc9f9b35e8", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c5c4e1af-e87e-529b-8ff4-1874b7e8e380", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d8e32409-d0d9-5210-853d-70fda2fc9df2", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:75bf7fe3-65fc-5592-afa9-7fea95f76646", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:bcf37f83-6d0c-5d6b-9df2-96deed07089c", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8540e2c5-47e3-57ee-8159-f64edef5afec", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:acefacb6-0529-5b11-a4e9-dbae114d6380", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f631dac3-1299-5fdb-8a75-b0da7d2f949d", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2886764b-f9d1-554d-a95d-5d1214359482", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:26949e17-d74d-5bb1-af4e-ca434e64929f", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:6d9996be-723e-516b-9a12-e51acbe97b7e", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:de4704d7-70bd-5c44-905c-95957bc0baf1", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:38dab401-d861-5ecf-b6c8-cc99d1878b01", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f0c221d6-0619-521b-a34e-8d74a962d621", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e1ff696b-a05d-58db-8315-31657e25bdfd", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:df819862-006a-5890-8800-4af1422c558d", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:28893111-f625-5ec9-aa5c-90d936784bb7", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:45ad213f-d0ec-5289-83f3-2bc45ed36fc7", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:1236cd92-35a1-5c3c-81af-7c70695027a5", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0e35b4eb-0b54-51fa-b636-6d8569e5d212", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:62de7774-3520-5fd4-a937-37ec7c810613", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:da84752f-41eb-532a-a4a6-257e9dc5dbc5", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:52707b5a-f6a0-5796-acdd-4146d7e3bff3", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.11-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.11-tuxcare.4" } ] }