{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:1f319e21-fab2-5a80-ab17-5989c8d209f3", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.1", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-cdi-weld-producers", "version": "3.5.11-tuxcare.1", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:1579f0a3-6e3f-538b-9528-0764a4aef0e8", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4dc8ecc4-ea8e-584c-9f6d-6740ee19c148", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4f97dcd5-b5b2-518c-9604-5b1872a130a7", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:be31cd79-ef93-5827-8282-0cbdcf1168f3", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:337b8f4c-6ecc-5a97-80a7-f63f4464a6fb", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4e8fc529-5f98-58de-b6d7-7dcc200ed329", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a361aa8f-e1f2-5824-9565-65c0438dcc97", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e789917d-3132-5e2c-bf41-6a6dea51f3e9", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:10e2e268-fa10-5dac-b6e9-099954b4b29c", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b3f75855-1a0b-53b0-b021-540bb7b064ff", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:318983e6-3039-52cd-ba2e-7e45416bad03", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:750b83c1-f976-504f-bd32-0832fe6496ca", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a369021b-6d04-5898-944c-aa987a5d3d50", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:05ca24ed-12d6-54eb-ab60-e2b4c760aa07", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:eedd8b53-3dff-5f09-890f-52b8bb50c732", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0c4845e4-f079-5740-9264-f3e89953e997", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:38f4a075-57b2-5e97-8786-d19537e417ca", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4c5f002b-a0f1-5a77-9212-80d7431a11fa", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:42ba52d3-e68f-514e-8bd7-942d45b64c3c", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:788384d9-ea4c-5616-8ef5-3859aea2a7cb", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2ee11f04-92a0-553c-a585-b12aabcb075d", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8a3a5598-1ac6-57ca-888b-fb6841031a60", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3ffdc73a-be90-5231-a467-2c043ad64eb0", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4aba3293-e223-548b-9a10-222e842d24e1", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6cfe2336-1615-58b4-904c-c62a303a8923", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:10ec1c21-8004-56a8-9562-4650acf84860", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-weld-producers 3.5.11-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:33b39f4e-865b-5583-9fba-65ce8bee1826", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:22139300-1dee-512c-a372-1fc1053a7e69", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-weld-producers 3.5.11-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:08483bf3-7da9-5f32-892d-715deefa73c1", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:39bdd63d-9ab3-5b41-a277-bf3e5dd760dd", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-weld-producers 3.5.11-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6bed2cf7-cf5b-5e20-a6f2-144d876a1dba", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:00e5234f-9030-5f16-8dd8-7257b317dd7a", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.1" } ] }