{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:d4999998-d98f-540a-bf59-c7ddb45e18ae", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.2", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-cdi-weld", "version": "3.5.9-tuxcare.2", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:40e950ba-81bc-5793-88be-936a64832901", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ad14139b-7475-5158-a951-5bb4a79ee924", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:15eada91-36fc-5cbf-971c-8c239b0e067a", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4060267d-faae-5c32-87ec-311dc9549546", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:03a43e02-3b3b-55a0-b5e9-652d360a7cb3", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:708b63af-b599-5a87-9289-9f167af2e8a7", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a9d40dd6-d81b-5cfd-9e10-29b9acfa823f", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4c2ddbf0-44e7-5a55-8c31-722cd8e4bc18", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:887d4ded-175b-5f0e-8d09-ccb29da654ab", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c8b9bc18-568b-5551-a13a-1a17c8b97f01", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d23efb2d-39dd-5049-98c8-a17f510f60cd", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:40835dd7-caf9-5664-97e0-285cfff30119", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:49aa981c-c224-57b7-9204-2d3024a08972", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f45e7bee-675b-5aec-84fe-9ffba45ae96e", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6b8659a6-8452-5ad8-ab56-d873cdb1d4a0", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:02669cc0-f183-52e2-9d35-c69af044d5c0", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:41595740-3881-5cb7-bf4d-73783ceb2574", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-weld 3.5.9-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:aee31809-db05-56d2-9d2b-b65312d0cff0", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:dfb93846-539b-5f54-8a84-ae8697ea4d87", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:75480f09-2e9b-5692-988b-ed827d96c576", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:aacd0e8a-6270-59a4-92e0-1d82c0478ca4", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4c6d960f-12e4-5078-bd3f-1e56ccb35ba8", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:351cfbc0-17f9-51e2-a0b2-5e2f34d7b162", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:be1f553f-576c-5fd9-ba9f-335bed65adb2", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cc2c037d-b15c-50f7-a6fe-02eb44c0569d", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e6a992ba-e148-5811-8b55-63ab66aeb899", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-weld 3.5.9-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:75b0d44c-19f6-5baa-9dea-ec2d39d36d49", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2c44e1ae-68c1-51e0-a53f-355225556c5f", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4586e772-d33b-5c7c-be34-d0972a0a6003", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e283d74f-9b01-5d9f-a1e8-f72ee66f4217", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-weld 3.5.9-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a8b68f99-a60a-540b-9a41-63c64e02df30", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:debf6245-d98d-5512-af36-030a76e9e82c", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6010d908-3077-56f9-a905-06e1170c4caf", "id": "CVE-2025-48795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-48795 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:999e8b32-b343-53e0-8812-f3dc6d073b89", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.2" } ] }