{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:fab9eb25-919b-5773-905b-e6bd793fe14e", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.9-tuxcare.4", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-cdi", "version": "3.5.9-tuxcare.4", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.9-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:9e5d39a0-e1f2-5447-9a08-fffb67b94c28", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7e1c7911-7742-537f-a512-3b4ddd9061c6", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c25de073-f4ba-5a34-ba9f-65341936cbeb", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:78b70ff8-e0e8-58fd-88e9-c275796c23ab", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:20eb9bbb-8393-5628-a54e-0a0473819256", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0b90d1df-2e9c-5a94-89a6-265751a88544", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2f8070f8-f957-5e25-84bb-0d485ea6709d", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ed61e472-5f76-5886-a4fc-162da3d60493", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0601e90c-19ba-5cae-b74e-faad7cdf549c", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0d2cd4b7-f801-5aac-8a79-0806f24623d6", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4d022ff8-0ebb-54e3-9b7f-c237a64dec4a", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:bad7217d-79b4-5775-98f5-ca5d640520ae", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:6f7a8350-e4d0-54f9-bace-ce7251086121", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:9546285e-710a-556c-b6f0-2b1fa0001e0e", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:1e8e2bee-5266-5626-a660-2f2960855eac", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:433f0de8-fd74-5b01-9e2e-53435af4f707", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ccc59c3c-d008-5882-ac23-62fafeda6b72", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf.systests:cxf-systests-cdi 3.5.9-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b9f838fb-0179-57d6-b7b8-a5d3b3a41b03", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:655fb964-a14e-5066-9518-8f1cb492ecc2", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:04e5d6dc-bc43-5ac6-8442-fe5e9288416b", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:1206ced4-b121-5d70-bbfd-5f1877e501f5", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e0e6be35-fcd8-5ca6-9180-baf06deb4131", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:09e9329c-3350-5470-9067-a5c198d3e7c2", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2dec46d3-d9b1-5851-9a75-e1aab73d9024", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:54429a4a-2cb8-528f-8c0a-c9b67c99c7a5", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0416dffc-6246-5917-8cbd-b3ef257816b7", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-cdi 3.5.9-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:fae9d319-0c52-5645-be55-359c6885a2e1", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2e43638c-773c-5fd3-b444-cf81372b43a4", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3ad95dad-3d70-5cd7-94bb-7f04ca7cffce", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c815982d-a2d1-5b45-8031-d10996332fec", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-cdi 3.5.9-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:286289a7-8a07-5365-8e46-2eccbb51d39e", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:852c99a6-7d9b-5818-ad36-b7593dd48274", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:aa39747a-9a79-5133-8ad7-213d593e847c", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:1a9660b1-b1c0-59ad-bc5d-d1578311f85b", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.9-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.9-tuxcare.4" } ] }