{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:e58cd593-40fc-54aa-b252-e466e4fb7bc0", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.3", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-cdi", "version": "3.5.11-tuxcare.3", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:21584b47-9abe-5581-8d2d-3c9e2a1d477f", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:10220777-b2f6-5263-828b-9be6d04fdc09", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f2051ed5-02ab-53fc-ac2d-57c2493f4018", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b830a85a-51d1-50a4-9866-e3ed15da88ce", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ab453219-af90-5209-938b-82378e0e39f5", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0226fe94-5236-5e01-9a69-a68ed7fe8fe4", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:05fe41fa-114f-534c-a016-17ad2dcb7e02", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6d780368-b088-51b8-b3c4-0329d116a77a", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:56801acd-e663-5387-9511-135f633c6715", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d3609bbf-5e95-5efb-9bba-2eebb029ca56", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:011c4c44-4b7c-5aad-aceb-2c0f4ccf4e3e", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c1f414e3-bbd1-5f28-a6f7-0eef3ae041fa", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fd1042f7-b2b6-500b-bcca-9f51504c0ec9", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:15ef9523-227c-5324-b90b-d6c8635a6ca0", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:76dfe600-61f7-511e-9337-754a436de8df", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9c0dac37-545e-5ab1-bb4e-f40c571376d8", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8b9a4e00-3a13-5119-b34a-74d85bf26741", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:cc25961c-a5e9-5829-bf24-adfeffb1e7cf", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bd06e3ee-4289-585f-b1c4-bf4a6dac8bd7", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bea246a3-cff6-5cc2-aea9-5e0baf493c3f", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:40116149-c77d-5d9c-91cc-2a19121e412d", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:972b20d6-dfe5-54f7-80c4-d8cf1ff4bb51", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:42a6a3a3-dc00-5b8a-b3bd-0f768c648696", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3f6bf010-3073-59ef-ac9f-1132b2f86b92", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3e157ba6-164e-5cfb-b3b6-8c512321f3f7", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a2529964-ba5f-59e8-a7b0-bac2446f6aa6", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-cdi 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:edc7b81e-bf04-5182-a4ee-694e1a7f6b49", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:505b8547-91aa-5519-8549-6cfa61581845", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.systests:cxf-systests-cdi 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:72978c09-bc21-5989-9038-e4f2017f8baa", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:96635ab3-9fd1-5e1b-a8c9-b91a4abc5560", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-cdi 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9f39bf44-37ab-5075-8249-8a355edaaa4f", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:40bc1a96-c2ee-524a-a5af-52d2ad1e341c", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.3" } ] }