{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:ad99cd91-775c-5b96-8137-6c1a24394947", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.3", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-http-sci", "version": "3.5.11-tuxcare.3", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:b78ebe8d-b5af-5235-ab7c-93e424221b0b", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-http-sci." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b6e8cdd0-50a0-57a3-9fe1-b228f352cc93", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-http-sci." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a074ad92-d9a6-50c8-8ed5-1a678bbe6773", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-http-sci." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b9fffac9-fb1a-522f-b017-0985dff89576", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-http-sci." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6c0fbdc1-338a-53c4-97bf-53497df9a691", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-http-sci." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:96010350-eace-5500-a433-9ca6503bde17", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-http-sci." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3f56b4ad-119b-56ba-8d0a-bbb21bb0d68f", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-http-sci." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e05db40b-88fc-52b1-aa22-fcff0673fc6e", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-http-sci." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9c7b74a4-df3e-59a5-acc3-51a02b5d315f", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-http-sci." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:acddc221-444a-5dc7-a5c4-25c9699092dd", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-http-sci." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:03777362-9375-5d9b-921c-7d845dd3c932", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-http-sci." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a05136ae-91f7-5e2e-b62b-25ea4b34cc5f", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-http-sci." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:31077d9c-53bf-592a-a05a-6800a7508cf6", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-http-sci." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9006ddfa-0447-5465-babd-a85752e4328b", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-http-sci." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b7c4ace1-164d-5e6d-bf64-6a2ff7819dfd", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-http-sci." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a1524e12-6be5-5a28-9560-1344c9a487f5", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-http-sci." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:739ccb27-1c6d-5134-8f3f-9f8396439b88", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-http-sci." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8cd64b50-65b8-57da-9c19-43c3e5c48bda", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-http-sci." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8b43bf1c-b315-5a4a-ace8-ca930f2a0073", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-http-sci." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:63d735bc-e588-5ddc-9391-23a7ecf35aec", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-http-sci." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:224a03c1-49f3-5196-a43a-abbed765e090", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-http-sci." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:08f6dd8a-cae5-5b36-8693-efd2612770e9", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-http-sci." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:48892b0b-3356-5574-bb2b-734c6d32d737", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-http-sci." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2d99de25-4fbb-5833-a613-3497a64228ac", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-http-sci." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6e6fc000-8a3f-5eb9-b786-300a435ddfcf", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-http-sci." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:17957e27-6ea8-500c-bfb1-3e29c16369f5", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-http-sci 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:592f01be-e4bb-506a-a1ba-eb64ff509f23", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-http-sci." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b980143f-415e-5e6e-8cdb-77331a5b7bfa", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.systests:cxf-systests-http-sci 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b28bb541-9a4e-593a-95de-70cf032c4970", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-http-sci." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6dfd20cc-587f-5e69-a676-387a1d8570f3", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-http-sci 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:91bf1424-af77-56b4-b51a-1a0b02de6f0d", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-http-sci." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:80a5bf64-6fd6-5d04-a473-03c274efd84d", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-http-sci." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.3" } ] }