{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:26a39226-ea47-5aab-8375-ffa552ab0821", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.4", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-cdi-weld-no-apps", "version": "3.5.9-tuxcare.4", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:96bf727c-b266-5fc8-822d-fc35867c7b25", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:fb4fe180-1854-5b42-af59-e75087d05925", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0cf71fa6-46e0-532e-9cea-ca5fd48cc1f0", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7f4b21ea-5eee-5482-b3be-742a0270b2f0", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c1a8c011-7881-5c9e-9cd5-9be6c2206204", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d3653f74-e879-592f-9a00-e2b652b7785b", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:89752650-d859-52f4-8afa-70951195075a", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:cc3ec81b-5b78-5c39-bf2a-9f375e8a5d7f", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d057d6b6-7506-5b10-88aa-c7edaa8b3db3", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:05f0ddc9-96a2-571e-bedd-847bde6839a1", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f61fb9ca-e9fc-5b82-b63f-24f5cc21621c", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:100e384a-ebaf-53a4-91a9-4170d727e4b0", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:dd3c29b2-4b32-5f53-888f-43df0c30e717", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c8177938-661d-52ff-9fe7-1215ec608d91", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ffd47778-2a3b-56ec-97c9-7d50acd522aa", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d6bad2b4-6299-5ceb-87c0-803c7ca366ac", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8b4e7fb8-6fb7-5674-a328-3d66919b80a6", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps 3.5.9-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:1b4f3542-6b3f-5004-83c8-1e3fa72fa57c", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ae7323c9-4209-564e-b2e5-8a1d26f9b003", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c7c92405-6288-5d9d-897b-369e79135243", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:30ce1c44-374b-580a-a672-2f9f95c2d6cd", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:83a2937f-386f-5d6b-a25c-7d42e96e2058", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4e043adb-83ce-5083-8346-71a69151a500", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7522d2e6-c5b8-5fbd-875c-8633dafbaa22", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f09c63a2-a470-576e-a6f5-42a4c8c5e574", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:76d96528-5f1a-50a4-9c3c-43bb66911909", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps 3.5.9-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a308b8a7-e22b-5f6b-858a-e8dbdedfa8c7", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c829e50b-53f6-5745-8a36-835ee4d25737", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:95a1ec82-3319-5222-bb71-ec8b14bb6e6c", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b6a3b2ff-c9fe-572f-8ffe-9eb5168975bc", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps 3.5.9-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:325c4bc6-21ee-58b2-8b08-834821e258ca", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:1c5551b7-6d28-5741-a7f4-885ba288a2af", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:85ecdce9-6613-5237-8c6a-49aa89a81935", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e28ecc7b-484d-5531-bda4-2792798598e8", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi-weld-no-apps." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-no-apps@3.5.9-tuxcare.4" } ] }