{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:a07e7a74-c1cb-5766-bd9f-011e30b8f4e4", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.3", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-cdi-weld-no-apps", "version": "3.5.9-tuxcare.3", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:932cd512-dbd0-507e-ae10-748ddbacd8df", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:371f4d2b-9917-546e-aabc-c49c75b0936b", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7efad619-c7b4-500a-bf6e-6dc5009fce49", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b9b78d97-83fb-5458-a2b5-2ca309068781", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:99ca0902-4125-58bd-a22f-9890e03e0382", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e0525a7d-f235-508b-9ba9-18f8349be505", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c6e7c09d-fb7a-5ac9-976a-94e5ceeb17a8", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0be3e084-f4d3-5b51-a198-fd5853e74190", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:07affe5d-16a8-5f06-ae62-9082f6cd391a", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c5a446a4-35b0-5d9a-818a-eba80ad5e2c2", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:84eebc0f-4f6a-5fa8-b729-bc43300330e3", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1fb08a42-4edb-5de1-a3a5-c8adccab19ec", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6c160c3d-048f-5ce4-a7e4-096a6f0873d3", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1d344a43-9fe9-55d9-9485-12d73f025620", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ef4a3fb6-09b8-5379-bc5a-cd0e20bcca21", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b5bbdb3f-2d18-5293-837b-efb00322b550", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f688d33c-43cf-5121-bcb5-e64ea2327ae4", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b19b8270-d887-5fb4-9db8-73d3c3ae2075", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5cbe898f-8c71-58a1-bdd1-b28fa0b6e443", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c48bf16c-c263-5b98-811e-f5e6c1bd99fe", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:82179f46-ffce-5168-8c8b-fe99765c4b83", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:95c469e9-617a-50bc-b0de-6aeb110857eb", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bf449683-4d08-5313-85ae-5ff75cce1f22", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:729313e5-8ca0-5c35-bbd0-11c6499ec367", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:34cd6fd8-318e-5935-9111-fb2d52dfc17b", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:90a9c472-88db-564a-9c96-fbbfd7245a62", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8a857ae6-3ce6-5440-b1ed-e1a88be43054", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9260951a-46ae-515a-9ccc-c6ebb3922e65", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:cf505ac9-f9b9-5e62-87ed-3023f17c677f", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1974e2ae-da00-55d6-ba84-841655b6af8b", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:98eb3ff4-e133-5d28-8439-2c97c4f6bbdf", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4552af11-d32b-548f-8263-5e5ec773ada4", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:690a4c76-621e-55cc-9a12-f361df101067", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4c1fe20b-0c31-5821-8410-9152e413e5dd", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.3" } ] }