{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:d6751080-d700-56ba-ad38-9ec494283533", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.2", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-jaxrs", "version": "3.5.9-tuxcare.2", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:41637acb-36cd-53a6-bde7-e135d06b422d", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8305f51d-98f2-567d-baae-e69634acbeff", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6d8d6278-dfbd-56a0-a072-96d9d8780993", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:26c28bad-85a0-52c4-a128-02f3cb299aa0", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:38c78e3e-f1ee-5fd8-aaf5-1528d592f7e7", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6588c5b5-2c24-5ace-a61f-743caa90e20e", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fbf93fea-74b5-50fa-b45d-4d4227550657", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b3b9f7a5-ccb5-5f0f-8ebe-60efa5df9cc4", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e1f815c5-6d01-502b-b698-77df46265c08", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8fc30d4f-c943-5033-9e46-9a35d37960a8", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a1957603-881a-556c-9585-cf6e5533fb38", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c79edfed-3dc2-530c-8a90-e8c3340b5e20", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ef0ced60-a8fb-5279-94e1-1c031f21a3b7", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e44699b3-e302-5c5e-a967-5583c37475e4", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:01490f8e-b883-5751-a2a5-7b91e3df153d", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:401f687e-d3fc-586e-aa7c-5e0b389eaa56", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9360ecd5-3b0a-5677-afd3-fe8d4c160c6d", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf.systests:cxf-systests-jaxrs 3.5.9-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:39a3a990-9345-5bad-950a-36668d1c89fb", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b2c2288f-4f71-518b-9555-afc446297f10", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:acbd2b6a-3ae7-5a70-ae2f-2de8c926ec76", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e628b6d8-037b-58f4-9c47-575e3442cf31", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d823cba0-f364-50b8-a823-fd271f8aa24e", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1033aea3-8618-54df-aa5d-f9b1e9391012", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8a00574e-cf60-57a0-a445-72cbe594fd84", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2641e826-1015-5944-b9fe-a635deac2050", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ebb50f26-6f7a-5e26-8dea-09c2ddf50c47", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-jaxrs 3.5.9-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:dc9dce2f-4490-5a8b-8e4d-db1bf3aa5069", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6ba07713-c7e9-555c-bf04-e1acb1a1568d", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1a08e86f-7800-55a3-8ca0-e73302d92276", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f6cfb0e9-28f3-5c14-b2e5-67a02c55872e", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-jaxrs 3.5.9-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ba6bad95-f07e-5cda-8089-f2404b678a79", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:675c2a20-d2a8-5327-8899-db3ad5bc2b02", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:93733e38-303b-57f9-aa45-b885164b3b39", "id": "CVE-2025-48795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-48795 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f93321be-ed6f-5669-8828-be9971599c31", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.2" } ] }