{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:a8b19fc2-d11d-57ee-a0af-042631463d99", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.2", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-fork", "version": "3.5.11-tuxcare.2", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:bf38e0bf-57e5-512b-a341-e51f39d5d844", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-fork." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:746dbc4b-77f1-5430-9140-7b5162cfc074", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-fork." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6bc52199-e8ae-54d6-b065-04bf66267c0e", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-fork." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7cb90dc2-a9cf-5732-98f1-1e682e363fa6", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-fork." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ffacf5d6-3a63-5dd2-926c-3034d6ce4f2b", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-fork." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a61a3bd1-3ee4-5f4a-8b18-9330e4ee7ef0", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-fork." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bffc9e7b-c7ae-5bd0-98dd-f585920cada8", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-fork." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:58dfb9b8-cae4-55ff-9d64-52043a1cb3ea", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-fork." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cceff199-0dc8-5b81-a429-29319ea295c8", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-fork." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:22af2d7a-8d04-5c2d-9450-5166e2b83d02", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-fork." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b6c0c807-d417-5992-bf59-504b272f5971", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-fork." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7dac8164-53ee-5188-a7dc-2cc8316d4f61", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-fork." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6096f7f0-e5c5-5315-8afb-6482f7337df2", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-fork." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ac589ae1-8dbf-5686-80e5-60a3a3a9664b", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-fork." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:703cdeac-5c56-5404-9f12-23d775a9a922", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-fork." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5c8423ce-c78e-5d35-8224-5c5b359d7368", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-fork." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e9484214-221b-5e0d-a7e6-cad59ed20627", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-fork." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1b8f437e-ac8b-5bd3-ba8f-29978caf0b82", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-fork." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5b137d74-c07f-5a20-9fdc-2194c67eb28a", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-fork." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e8bab886-e818-5907-b57e-e510f99d616c", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-fork." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:154a0bf7-ef7d-5450-a77d-552097cbae74", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-fork." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0cb40d38-0d7d-5324-9dbc-f24f3c9d34fb", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-fork." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d02bc809-da8f-5942-9b58-9a76006bd0ea", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-fork." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c4ba6e3b-1c71-57ed-8b47-7ebb6d8d3d7e", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-fork." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3dd5298e-c465-52d3-b92a-4cf60256b5c1", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-fork." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:08bcdad6-b456-5113-a51e-125536190cac", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-fork 3.5.11-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a6161d96-e8a5-595c-8d92-a5ddb3350aa9", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-fork." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bb2d19c2-4861-5087-99dc-c18c786400ab", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.systests:cxf-systests-fork 3.5.11-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5910b1c2-f582-57a4-9447-0fe9a77d27c4", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-fork." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b0e26399-d1bc-50ee-a40a-7bd536b043fd", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-fork 3.5.11-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9bf1ff40-61be-5644-b987-66ffb6a23ae1", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-fork." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5f86e9cd-57b0-59db-b08c-d4259fe02b27", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-fork." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.2" } ] }