{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:0f8c6c51-8239-5ad2-8ac2-245a06e9a95e", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-webapp@3.5.11-tuxcare.1", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-ci-webapp", "version": "3.5.11-tuxcare.1", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-webapp@3.5.11-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:db69daa8-4033-50ad-ace6-d79447326e6e", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-ci-webapp." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-webapp@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cbca9ffa-2aea-5ccf-b03b-486e98244e79", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-ci-webapp." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-webapp@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:aa1c9ce7-e121-5bf5-b716-11a970c94c35", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-ci-webapp." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-webapp@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:650fc0ec-8d50-559e-aa63-dcd139201530", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-ci-webapp." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-webapp@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:32354bcf-9db6-57f5-94bb-0e910dddfc97", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-ci-webapp." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-webapp@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2395cbf6-877a-5c1f-9edb-ae487271d5e9", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-ci-webapp." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-webapp@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:94b4f8d9-5c97-5a34-b9cf-f35b0168c138", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-ci-webapp." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-webapp@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:df9ff6cc-1cfc-5f8b-a6e4-83a669f3d2fa", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-ci-webapp." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-webapp@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:87808538-7e98-56e5-8399-24217e9f4e0c", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-ci-webapp." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-webapp@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9b25a1d8-368f-531a-a154-f8a2f6e8f766", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-ci-webapp." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-webapp@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ead03d76-fb2f-5157-8807-71b6e022f0cb", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-ci-webapp." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-webapp@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d11ce04d-d08d-5354-bf91-a5fc711605d5", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-ci-webapp." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-webapp@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f62c546c-33cc-5cdf-afca-394e8503ee2e", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-ci-webapp." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-webapp@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:38d29f35-02ba-5d8f-a8f4-239e05502382", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-ci-webapp." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-webapp@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7b068d32-c58e-5102-aae7-57cbd12b357f", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-ci-webapp." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-webapp@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8d42ce73-ce68-549d-8d22-ea8c8be89b21", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-ci-webapp." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-webapp@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3c3bcbd7-3838-56c9-9291-86b3201ade0e", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-ci-webapp." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-webapp@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1b7aa5d5-b41d-5465-8533-639d60c22c69", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-ci-webapp." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-webapp@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f3c5fdd5-6b61-5296-b0a4-f7de8f2d0ba5", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-ci-webapp." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-webapp@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:41614032-b884-5390-922f-9192cfe61159", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-ci-webapp." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-webapp@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6cd973ae-544e-55d5-b1ab-444ace976c69", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-ci-webapp." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-webapp@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:67b09c9b-0725-57d9-bc4b-467e71c74de6", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-ci-webapp." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-webapp@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a5c2d393-5ac0-57b6-ad1a-a2bfafa674c7", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-ci-webapp." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-webapp@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0d869935-d2f3-57fc-b5ec-47bcb6395d19", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-ci-webapp." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-webapp@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4d8bd3cf-584b-521e-be9d-404fed761ca3", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-ci-webapp." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-webapp@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9c9983a7-b9f2-535f-8dd8-41f4e0f1d76a", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-ci-webapp 3.5.11-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-webapp@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bde856da-8e20-510b-9f20-7fdf0d6e7476", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-ci-webapp." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-webapp@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6f5142cf-49f1-5c43-838b-6450bbae25e1", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.systests:cxf-systests-ci-webapp 3.5.11-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-webapp@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e37bf047-2b09-52c6-a9e5-28065a94887b", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-ci-webapp." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-webapp@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:880bc139-a3eb-53f5-a181-b57419d7f2c8", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-ci-webapp 3.5.11-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-webapp@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fc4195b9-e100-56eb-b86e-e2acdc2e6074", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-ci-webapp." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-webapp@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9520eb6d-73e4-5ef5-8fc2-5d42ba3fc876", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-ci-webapp." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-webapp@3.5.11-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ci-webapp@3.5.11-tuxcare.1" } ] }