{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:ff60d631-7449-56c5-be62-a8d8f80f1724", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.6", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-http-sci", "version": "3.5.11-tuxcare.6", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.6" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:ab91d664-888f-5f39-9496-85e787319589", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-http-sci." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:a0c54432-6477-5af1-9843-a6050b8d31c8", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-http-sci." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:0f919b58-940c-5079-812d-058613770ef6", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-http-sci." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:0afd828d-f156-5f06-9656-69f9abe71abb", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-http-sci." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:a03a1bf7-7b9b-5f02-9b3e-ab42425b92ab", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-http-sci." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:4984b43b-ea16-55b5-bf51-1e5d239fcc5a", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-http-sci." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:3f17e0e7-1e92-5978-928a-680424dfacf7", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-http-sci." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:e7607044-940b-56fa-af5f-c6ea9c5a044d", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-http-sci." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:e10b0e50-39fb-5054-8df8-621ad920dd34", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-http-sci." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:cfdbb6d0-e52d-504b-8a66-73b03ead03fb", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-http-sci." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:78f010e1-add3-52df-9a75-ad451cca0399", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-http-sci." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:3b501982-ff21-5887-bde9-33d13b0e5ab5", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-http-sci." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:b38ef3aa-4e23-5780-96c2-b00be8768136", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-http-sci." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:73878689-dcd4-5098-bcd0-7c3d055d4cc6", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-http-sci." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:56311344-7439-5560-bf90-fb71b114e4fc", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-http-sci." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:2c7d661f-4a50-596d-bf4a-dbb25b93f99b", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-http-sci." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:40337f05-c5bc-5576-ad03-1e1b03eaf246", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-http-sci." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:975c205f-0ac3-5a6c-b0a9-7f780c5b72b0", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-http-sci." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:359750f3-e776-5373-8951-31e7fc8c4f48", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-http-sci." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:27426154-35d0-5422-8364-321e9356bc07", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-http-sci." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:efc11d3b-1d06-532b-a3e2-806bf7329cc4", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-http-sci." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:193d6793-dfc3-5d09-baf9-dac2606eb3b2", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-http-sci." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:d34b0a84-6aa9-53c2-a4c0-a8e47e2f8c8c", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-http-sci." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:1cc5897c-b954-5998-95ae-edf3b812f06f", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-http-sci." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:d89f4bab-d97e-5de8-a292-b83905a56f08", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-http-sci." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:a6eebe51-473f-51c5-96e7-d6ebcbce7231", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-http-sci 3.5.11-tuxcare.6." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:bd473fd5-2a8c-58b7-9671-93da825285e4", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-http-sci." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:8470cf49-20db-51d4-8c27-da903fd55d93", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.systests:cxf-systests-http-sci 3.5.11-tuxcare.6." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:2279268e-12ff-55e3-a021-ee240899c1f8", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-http-sci." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:cfa7b955-5aa2-56d2-98c8-7ef9275d9c0f", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-http-sci 3.5.11-tuxcare.6." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:210db0f3-69a7-5674-bfa0-152459bc47e9", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-http-sci." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:9c0584b8-3507-5281-8176-6e0b4e2cb11e", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-http-sci." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.6" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-http-sci@3.5.11-tuxcare.6" } ] }