{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:eb2713b9-4ee8-5f44-af33-9d6e0fc2ca3a", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.11-tuxcare.3", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-cdi-weld", "version": "3.5.11-tuxcare.3", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.11-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:748b2427-6d6f-566b-83cc-3c05999c1a82", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0b354df5-61b5-5032-bdf9-54c7729f4898", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4cd90e46-c7d3-538b-8e06-d05f653635d6", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c6d4abbc-258f-55ff-9b3e-46b734f4c0e1", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4229ec5c-0149-528b-9e13-14fea18d6228", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:504f0f05-caad-5c65-bf3a-f13eed490497", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e3f919dd-0830-51e1-b425-9f3cc32c41b5", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4b824f28-4cbb-570b-8792-d206151859de", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:57a0bf88-c72d-5ec1-8c0f-0bb2f3fe4949", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:39a7f290-0c84-5280-af91-58021ee78850", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:466a29ac-709f-52a0-bca6-1060d7a1557c", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9d4498e9-2f23-50cc-b60e-18a5c1a75452", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0924aa3a-3c59-5845-8fbb-8bb5b750f738", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7f4d16cc-6046-51a8-b1a9-142dd0ac8f9c", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:31e69a28-8712-5a3e-a1e6-a88313dfca65", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8418ce21-18b5-5b25-a14d-5214a6b86005", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7544555d-f85e-5269-a2bb-5ece4aa26272", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4e437d4f-24c3-5824-a34b-7bea2c1319ba", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:605381e8-637c-5a2b-8813-c5838de47110", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bc2ee3d2-6702-56b1-a74f-4b0365e37552", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0569eb7c-f451-5219-9799-1be244e18729", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7f224a8a-8cbb-5ffb-8f74-f420bccf5cf7", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:541d0a8c-44eb-58d6-8c62-e5bbf867dcbe", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d92c502b-46fb-5e8a-8c83-4c5a9b85b5d7", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:43cff25c-670a-554b-b0c0-dfcf2ec5d14b", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:da6dc20d-2867-5ca9-9e91-10e94f0fc55a", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-weld 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1f02503b-6187-5486-b5c4-8945b483cd6b", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f2583ffa-19ad-5a4f-a9dd-7503d58b2d0c", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-weld 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:149c2ce4-6bf3-52ce-8cf6-9b8cf89d709a", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2567735c-2761-5630-8043-f577aebe1427", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-weld 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5bda11e6-0447-5d5d-81b3-d120e8f4d829", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:dd5d21fd-2bbe-5c53-be01-899ae8532296", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.11-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.11-tuxcare.3" } ] }