{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:7d499333-7835-5a12-8339-df9a28861e87", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-grizzly@3.5.11-tuxcare.4", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-ci-grizzly", "version": "3.5.11-tuxcare.4", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-grizzly@3.5.11-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:c984b50d-119a-59df-9c4d-cab210dfc554", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ci-grizzly." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-grizzly@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7c03fa4d-40d1-5034-aef2-4663d7ac5338", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ci-grizzly." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-grizzly@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:eac9aedf-bb54-5382-9e6b-87b6885b6516", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ci-grizzly." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-grizzly@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3a8bc494-cfa8-5bfe-8eab-760734256862", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ci-grizzly." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-grizzly@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f4334467-6130-525b-8a51-b62192a63dd8", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ci-grizzly." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-grizzly@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:432639ab-9e29-5f34-9071-c7a1946d8d23", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ci-grizzly." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-grizzly@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:6f9c6980-0c79-59bf-b042-0f985578ab7a", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ci-grizzly." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-grizzly@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:5f78042a-5509-5915-beff-e2ab4f3b84ea", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ci-grizzly." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-grizzly@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:99519aeb-dc54-597a-ba31-1bc6f8c5d98a", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ci-grizzly." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-grizzly@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2d10e596-e470-5d25-8b1e-c708012e9cf7", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ci-grizzly." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-grizzly@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:eb3553da-71c5-5d4e-a119-3e91ade64b10", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ci-grizzly." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-grizzly@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:9fdfb66c-863a-581e-a689-96cc0683e504", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ci-grizzly." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-grizzly@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:80a16783-8190-54e6-9de3-c3288a4923a8", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ci-grizzly." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-grizzly@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4641b872-9a72-5bc2-aa9c-9a8068408c85", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ci-grizzly." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-grizzly@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:473b8b32-640b-5fb0-90e5-edbded658b75", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ci-grizzly." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-grizzly@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0185a33f-0f97-5799-8e40-a79ed5ac1d4f", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ci-grizzly." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-grizzly@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:6e50e731-444c-5a7d-a9c1-3967d4ab3def", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ci-grizzly." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-grizzly@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c943c022-68e9-5680-9b46-17b72ff975fc", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ci-grizzly." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-grizzly@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:9a0a0292-64b7-593c-b782-933c2c82745a", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ci-grizzly." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-grizzly@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:32c88bf5-2176-5c16-a1d7-3e69f58a7bf0", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ci-grizzly." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-grizzly@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:57ae3a06-9d99-5818-bb86-f13c3b859396", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ci-grizzly." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-grizzly@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f2e687e7-b98c-5938-b09b-6a7c7b30771e", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ci-grizzly." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-grizzly@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:55ac6aba-e3c5-500a-b03c-25ee111e3548", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ci-grizzly." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-grizzly@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f7d4cccb-c775-5223-9206-b161d31fde6f", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ci-grizzly." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-grizzly@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f58a63c6-b159-5ed8-a1d9-2dfb907a02b0", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ci-grizzly." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-grizzly@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:54620995-1720-5c82-99cf-5063656927ae", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-ci-grizzly 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-grizzly@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:9c2d6310-010d-55cc-9a7a-5d9a0cd3c1dd", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ci-grizzly." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-grizzly@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:1f4deff7-91ae-562f-a25c-d0a970ec78fa", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.systests:cxf-systests-ci-grizzly 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-grizzly@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e6912e66-e954-5c66-a071-fa393f68685d", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ci-grizzly." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-grizzly@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:29a4bf98-9223-56f2-b2aa-ba3581b9e07d", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-ci-grizzly 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-grizzly@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8e640ee3-91bb-5d84-bf24-0b75318ce4c6", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ci-grizzly." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-grizzly@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a2bc665b-456f-5519-995a-88ede715d583", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ci-grizzly." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-grizzly@3.5.11-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-grizzly@3.5.11-tuxcare.4" } ] }