{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:c55fcbc8-424a-58bc-91e9-760bd768d736", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.3", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-jaxrs", "version": "3.5.9-tuxcare.3", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:24a8e82b-5f79-5bde-8025-4d6765a0540f", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:617de941-7f37-5b71-8ca7-f47a01efe19f", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ad63cddd-0ea5-5772-a1d7-abbbd84f194a", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9c44e691-48d9-5c25-a62b-06f44df77933", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:91daf92d-a46d-5045-86c3-af46d0b2817b", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:730a7d00-8784-5f9d-a277-7c769145f234", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d65f4359-12f8-5cc9-b9bf-77dca1e18d83", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:09542c96-1bbb-5eeb-bc92-f54fe23ff599", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e72c6b41-b847-5b87-bc8b-f8f144bdb2ea", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b3e8563e-af3e-539d-8bef-a9cbaac96643", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8e075257-1550-5f45-bbb1-84505dd2ce2e", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:db79d271-e842-5ce7-8837-5856af5becf3", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:100c4099-290c-5283-935d-9e5391664cd9", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:38c42c26-c182-5dd1-bfd6-43745895c3cd", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:62f491f2-6ade-54ad-82bb-09fb5faf5c66", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5e5f615b-af74-5008-9b04-ace5dcc0ddb3", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a3c76c9d-7fcc-536e-941e-4942f224025e", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf.systests:cxf-systests-jaxrs 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7e6cbb57-a645-5b4b-80df-2c7f9eb2036e", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b8552a20-1276-5af5-9ac7-92394022afa2", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3fbeae4c-77d9-5ec0-943a-1acc4e42675f", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c72bd0ea-a3fc-5891-89e1-d5824e8039fd", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4ff3a431-58bf-58b6-90d6-6e6d5c060885", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e45c27a4-49e4-5ec6-8b66-a64d4e12d079", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6e793b20-cf6c-53b9-a2c8-420424016d9f", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:dac0212c-ea4f-5e6e-8f27-79a199f95448", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f041aea1-31f6-53e0-8293-d80e3dac2e0c", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-jaxrs 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0732eefc-6cd8-5e41-9dc6-f94697a95837", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:454d2095-0444-5003-a16f-820f064d7703", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4a763185-4e45-5ca3-9939-4b1a0ed6eda2", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:10a45cf6-d137-5bc3-8c6a-560b954b7ff7", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-jaxrs 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:35be6a27-2984-5eeb-8c93-abe539647302", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:990a8b03-e6b5-546f-9189-ca5b890a0414", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:633800aa-6d0b-5c98-a18f-ba2cb7eff50c", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a042ded7-36da-56f8-acd3-438383ad3934", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.3" } ] }