{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:6d1404bc-4b03-51cd-9484-d81d8c861111", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.4", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-databinding", "version": "3.5.11-tuxcare.4", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:7ee5c962-f452-506c-ac3a-1ae7379ec429", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:79f8bd48-0dd0-5b3b-96a9-de1caa023a04", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d7dd46e9-055a-5d3b-8162-0b62cab39bb8", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b2b92e6b-df98-58e6-bd50-7cce62bc3cd1", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:30f651cf-51cb-5223-8bcf-e87b299e9e78", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:44948ff3-f4b3-55e5-9681-795788209fc6", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:6b939e6d-e8b2-5310-9c7e-85d45b24cb13", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:94ab1508-e90f-5de5-bde2-5d783fd95ef9", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ebbb5e8b-eaf0-5f59-ab10-f7c20dcbf449", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:5f0ed463-24f4-5328-be2b-1ec0966129f7", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:97f3cb27-0de1-5784-a740-3ad89537f4a8", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:119d06ab-6fef-542b-9e4b-7a12dc0eefc8", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3d589b23-a853-5439-b4f9-65d493b8be01", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a78a8f2a-7e16-5a9c-8217-c6ab7614c63f", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e7d9405a-8645-5a8f-9612-c7df8f80bdf8", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4e49027b-9f7e-55b3-aecf-1db57ce148d7", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:47750330-7cad-5521-91f1-ead3b3504f30", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b050ffc3-9189-5ad6-908c-b45fa5c57dcf", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:28e0e4be-a3dd-5905-ad2c-cfc56ad22534", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7c40b806-6969-50dc-840c-b4f14e6f6bd8", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:6b8012fd-a110-58bc-b810-bba164fb021f", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b2504c40-2848-5f8e-9113-5db7c6baece6", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d71ec02e-c633-57aa-ad33-e893d74f3645", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:213bcb22-5d84-5cce-9199-2b142bfc8067", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ed03f21d-bb59-5ede-8442-433c06f6a75a", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ee5ee9aa-cd22-5004-87be-2ad45faae207", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-databinding 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:21f158ae-e2e3-5c37-ad30-000c327511ce", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d57760fd-6fbc-5f74-a851-10a3e3566693", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.systests:cxf-systests-databinding 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a0a6e821-939a-5db8-899b-e67f6ea3006c", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:be2e5e82-b017-521e-be43-fa8132b6a46b", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-databinding 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:cfddc4c0-0745-5307-89a2-1872010beb58", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:314ae5cb-2ffe-5f07-a4af-23de4b008528", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.4" } ] }