{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:d8d9880c-c638-506d-b08a-2e9211803c77", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.3", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-cdi-weld-producers", "version": "3.5.11-tuxcare.3", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:fe0d2338-c98c-5f60-bd5d-04b04abb1045", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b07d5b50-f6eb-5bac-a3c0-cb99606cf29f", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fb4ce95e-e156-5b4b-979f-8d6603ac50d0", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8ecca29b-dc9f-5c41-9ba5-57172d8066e5", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:73589227-b548-5186-bd68-4d5af4308cec", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9715b1fe-c089-5760-be56-a40da2c2366e", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:534d67aa-9c82-5fe5-963c-c3a2fc40b448", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a3577b05-cb28-53b4-b954-963ea67a0f26", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d1cb81c7-6e12-5e6d-ade1-c844afe35da2", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:85ccd1ab-ae76-54dc-b386-a3d573f6912e", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:576c4326-4095-5d67-b8ee-46df173d5312", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7a0e71f2-3697-5698-ad22-c50c4036449a", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:730c787d-b61b-5dc6-899d-efd75a984d38", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7cdb0317-0772-5e06-b356-f658475a1329", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:22b67586-0594-5c2a-984d-1ce987916e30", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f9c90737-427b-5001-a266-1b6d8413fd99", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:87437123-4abe-5ed2-ab71-a9da4a0b1b96", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f175043b-87e4-5c0b-8549-1427742b1f61", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:41094b13-b620-569b-8379-53084d96a7ff", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d5368d73-9b3f-599b-9565-157c397422a7", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:50b2417c-455a-50b3-987c-092d686aa0f4", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:37a3522a-e000-5ee2-940a-7328bc734a2d", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d61cd639-d2da-54e4-925a-1730f7ba2c32", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3671a379-3d64-57a5-a325-7f23c55aec2a", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:982d7ce6-9a47-5df7-af64-2fb9884c61b1", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:34b53d67-0c9e-56a9-8dba-a72e26309c52", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-weld-producers 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:791e545a-890e-557a-8dfd-9c6c3fd9b85e", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3db2f403-4a21-5407-9d17-63235900988f", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-weld-producers 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1d89aeda-2bdd-50ce-94d5-61958bb244cd", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:806d43be-08ec-531a-a869-8893865b0291", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-weld-producers 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:54b66c0b-d1b0-5374-a527-491363ead3c7", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6e714f24-84d5-50fc-8392-b261ecb20b57", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.3" } ] }