{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:f1a99e32-9fbf-5a81-9638-909ec6cf9120", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.3", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-cdi-weld", "version": "3.5.9-tuxcare.3", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:6a4adf85-a1ea-5bf0-8a87-177a1cb75968", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2d0217a1-fe26-51ab-8a15-08a3c1b08f4a", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f4bf9ad2-349f-5984-ae98-7eff37c696d6", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d9556a2b-7efb-5c28-818f-2c9b4332df56", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:05355438-ffa4-54ea-af46-37e40c603c92", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:caf540c4-77eb-58d5-8da8-348209d8e01f", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:cd72a057-d434-5eb8-bbc1-0cd1114eaa2b", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3dc038a6-6ca8-5936-a5a0-cd3f8368343e", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1d513050-4e22-5b6d-8931-b093662f6a01", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:71d1b9a4-c977-588e-951f-6a9e2d71c819", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c5c3d025-9ecf-5ed6-97c7-c008ce471ec1", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c1e9f1f9-0466-5482-9152-a02fa8dd2287", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9462b175-c26e-56f4-a044-a66b4848cf8e", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e3c9169b-21a4-5922-a4a0-dc536cf14eb2", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:aedfd4c0-b4bf-5684-91b2-571fad3f042a", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:85c7f97b-5354-521f-b079-7601e4d9a5a1", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:17cc9d00-7af5-59f0-b8b8-15a1251b451c", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-weld 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9c249184-a33d-53fa-8053-932f5a215755", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:487e82f7-c909-5ebb-bbb2-2e5f37d8607e", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:13938017-65ec-53b0-a3ec-f78aee815322", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a501c44d-cf81-5593-b835-7b9011a84c69", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bfa98af1-3b26-5e53-9f52-090b8547ff7e", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a3360fc5-6fd1-5f3d-bac9-ac972eaa5b21", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:508136b8-378f-5d15-a94c-e837ebc0384c", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:81c29ac3-0de3-5e08-b297-abae0269c45c", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5e577ccc-834b-5bbc-8b99-a78e638d3296", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-weld 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1f332132-1d6d-5a17-9e2a-ae7dcca23379", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e9374ec5-8150-5ff8-ba5d-18d3410f937e", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:628b91ee-2fa1-5d4f-afba-3f963a499e12", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5e4d209e-30d3-56dd-a377-278d75e08a40", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-weld 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:16fcccb0-0a3b-57e5-89c4-b1254154a9db", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8fbc57e8-8255-5005-a917-8a365c83f2e5", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:10a82f9a-c41e-543f-8e4c-b6311b703f5e", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e24ce014-508d-5524-b748-c9bc4302d454", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.3" } ] }