{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:c1de9824-dcba-547b-ad27-ce481c574fe5", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.4", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-fork", "version": "3.5.11-tuxcare.4", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:a708d56f-387f-5273-a1de-31e561f10060", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-fork." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:806d03cf-608b-52ae-a26c-1785a4f08f7f", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-fork." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:cbfe1707-9441-5749-97e2-f040fc1f4884", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-fork." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:433560e7-cf26-5543-811f-666a5426d027", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-fork." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f9ade42c-3847-5c12-a2c9-b2d0612441e5", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-fork." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:83c9a416-6603-569f-9dfc-b4be360c1517", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-fork." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:76e7634d-fcc5-5f43-bb87-a82828296bcc", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-fork." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7e9f7ffe-63bb-5f7f-a05d-3260599aa707", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-fork." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ac2346f7-6d9d-5a07-b49d-53fd8a3065b4", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-fork." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0b42ac7c-7291-5668-816d-6680d251c27c", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-fork." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:35877438-d751-5427-a8d6-68839ecead4e", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-fork." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2df912e8-b88c-5ec7-9cda-120d708deaf9", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-fork." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f63de536-319e-554b-9c97-f2a230c437d2", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-fork." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:20babf56-c0ce-5a06-8c22-3f7182f60248", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-fork." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2aec6258-7239-5d82-a2d9-7c0a91305a7f", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-fork." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a7f39108-57d7-5b4d-b2ea-7dd5972e7793", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-fork." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:34f5d869-f47f-56b0-a399-847e596c208b", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-fork." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:014c2b10-479d-5891-b008-fff440a7e85d", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-fork." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:eb5c94dd-98b7-59e4-bacc-c468488d7f91", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-fork." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:adefbf2a-ec9c-52e4-9e30-210107544497", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-fork." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:6a9d4d38-bd08-5706-8e9e-239fd80e7fce", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-fork." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ea048834-3eed-5b14-b9a3-cec05b34faf5", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-fork." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:de2c9932-f871-5fa1-9c39-e2093da5d288", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-fork." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:9d250a21-f062-52a7-9f5e-f9144b97fe96", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-fork." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d746248a-b59c-5bdf-96ae-d4c74e94d85c", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-fork." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:09f44d3a-e685-5947-9f2f-1622bae3899a", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-fork 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0757a59e-21e7-5962-b053-b3f72810344c", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-fork." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7b12daf1-b043-5468-90e7-b64f682d56b8", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.systests:cxf-systests-fork 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d52b69d4-29ff-5e42-b843-3b5c4f708bd3", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-fork." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:814382ef-4a2f-51b8-a33c-a793dd435250", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-fork 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:226e4123-1c06-5167-999b-8445717e8046", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-fork." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a33bc297-b4ae-5be1-855c-8eeb2c17751f", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-fork." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-fork@3.5.11-tuxcare.4" } ] }