{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:6c8819e4-8441-5a07-a3f0-9f61a24a9605", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.4", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-jaxrs", "version": "3.5.9-tuxcare.4", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:7b9e6065-79be-5b78-8ef3-4713802396ae", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:837b6e1b-ce10-5006-9322-5bd2316f94a9", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f63c7743-74c4-56af-9bd8-6c920af33912", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:af6003fc-ca09-51ac-958d-36334cf6c235", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:bcdb6f30-46ce-5195-9ff5-6d45f5c6bf59", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8af1c476-f3a4-59d1-b7be-1c99ca933fc3", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:9f2717cc-3fce-5351-a2c7-5dbe878ce7be", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:1964ac95-2fdd-53a0-aa31-f8418720e874", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:157161f6-bf23-539d-8367-aeb32046deca", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:1b2d8201-c9eb-5d2d-94f8-c776b2f86c0c", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0e3c089f-172f-5f8a-ba0f-85e9314a374e", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:56841fb1-3a47-5a82-b9f3-ba15a7f59292", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3fa75221-e5b4-52b3-87b8-4ec1004dab06", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:526a319d-41ca-5abf-af80-4542b12ffc6e", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:09c4657f-9cf4-5ecf-a693-f3c5d770408e", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a614c4eb-ba64-5a16-84ae-17b14b39f909", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7d0a3151-9865-5f11-9547-e0413bca9443", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf.systests:cxf-systests-jaxrs 3.5.9-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:1b5de700-4fbc-5a36-a78c-9ac42faa5eb4", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8ab28e68-a210-514b-9afe-4959b66057e4", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:cc62cc92-ca93-5ce6-8301-af1433828357", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:6d65f82c-7e57-587b-ab5c-7ef6d770c2a9", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2cfe9f7f-226c-51d8-807c-5f084ff561af", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:739f4c9e-fb95-528c-999b-2d5a9d163e43", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a540ef5f-260f-5bc3-bab4-321c805de1c2", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:32c8f349-924e-5cf5-b472-14cf16694a0b", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:49b9a20b-d884-5511-9e43-ca0b4245107b", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-jaxrs 3.5.9-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:af142c45-a172-588f-a6f4-e3798e83251c", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ba744680-281c-5d28-b658-2915bfdf6eb1", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0ec142ef-1feb-500b-9ef7-24e591ce180f", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3650a601-bde4-5404-ba3f-80bc7f9ac24f", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-jaxrs 3.5.9-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:43cfed09-3974-501e-af25-0ced1194fa56", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a3837158-0b0d-51b5-9a96-0440a66393a4", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0011d963-054d-57ac-b435-e410fe5050ba", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:1dbf92ca-08fa-58c3-ab92-a6f917c08da2", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxrs@3.5.9-tuxcare.4" } ] }