{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:a166aebe-10c5-5754-8848-21d566f2f9d9", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.5", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-cdi", "version": "3.5.11-tuxcare.5", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.5" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:59d9e10c-3f07-5e5a-9d8d-7574f155592b", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:d413d7dd-1108-5d64-842d-6e9878dc9107", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:b008b168-79b9-5b95-af9a-cc9f75a19b26", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:1a08ced0-0fc0-5213-8220-f98412346b47", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:bf9b73fc-88b8-57f9-8238-43b11193988c", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:0608570f-06e2-5e72-9204-0de36a9d9951", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:3f8fe040-fb6c-5f3f-b372-7db116626317", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:44576a8e-ab0e-5f95-b0e7-ea6dc545657c", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:35f51e75-312c-549f-b180-e8219bc39530", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:94bbe26c-75f8-5458-bdfa-b25a39728b97", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:b96acfb1-7163-5d54-88d9-077c3c4b2411", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:6958dce9-f9e2-5ab2-b1b8-56521346b76c", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:0bccda4a-8995-58db-9949-d20460f0b52b", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:be19ff31-ed4d-5f19-8702-80c9c691e94f", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:19be0061-a48d-5924-a30b-30a7be1b189a", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:0a800da4-4d33-5dd4-a322-fd082ed223f2", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:6f6e04a0-e962-5c98-8ba0-9ebb83f62b9a", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:ad7854b5-029e-5030-9b08-f60c00060472", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:710b0793-3374-50c0-ae43-6eb2196699c9", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:46ab3fac-4e02-5513-bbf1-efc9942d24fc", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:01e0ae51-0319-5975-8861-14af15ff1d90", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:ee0d8762-e8b8-5402-8dfc-56b6f75d7803", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:64250614-a887-5bbb-b4e5-aa80b0f4c7aa", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:7fa39be8-1904-5807-9a2b-b7b8fa199805", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:eb94b173-3d31-59b5-8711-5ce550ce5509", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:33235b1e-57c6-5b0d-84a9-31683b75443f", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-cdi 3.5.11-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:c153f0b1-8bc1-5b5e-82f7-9674e3273719", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:7b18adab-dce0-508f-8cbf-b0e295595886", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.systests:cxf-systests-cdi 3.5.11-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:f09b5cba-b132-5752-a7ab-e81ef623f03d", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:b9e8b502-08bf-53d1-9c1d-fe73302e7dac", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-cdi 3.5.11-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:84eedd5b-592b-554b-a654-1c8cf06fb116", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:1566e264-f3f2-55df-920d-aa658a18c392", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.5" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.5" } ] }