{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:2fb66799-6049-5a9f-bb4b-94fc02a76642", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxws@3.5.11-tuxcare.4", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-jaxws", "version": "3.5.11-tuxcare.4", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxws@3.5.11-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:3a75b227-dbf8-5d08-b6d0-0d505bc2e329", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-jaxws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxws@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:5848db4f-9311-5536-ae64-2929bcfbd22b", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-jaxws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxws@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:91622e5a-fd0c-54b2-9629-3daa7b7eb2ac", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-jaxws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxws@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:069259f8-31f7-55ba-9668-750683dfafff", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-jaxws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxws@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:bbf3e990-eacf-5557-bf54-8803fff9573d", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-jaxws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxws@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4375febf-b445-578b-89ac-e824aea8c3af", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-jaxws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxws@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:41393310-8d81-5412-81e1-3270c685d6bf", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-jaxws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxws@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:88ce0d1b-17d8-5b69-9f20-63ad7d324ddc", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-jaxws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxws@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:123f11cf-8b8e-5100-b014-9ae6a54b6e38", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-jaxws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxws@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7748c1fe-b69e-5466-98e8-937e9a06aed3", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-jaxws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxws@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7b2dd571-cb6b-5f32-abf9-b05249fa2d99", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-jaxws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxws@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:64e62c90-aedd-5df6-a1ca-cd920f8e1d68", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-jaxws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxws@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f473cabc-2f02-5ddf-b76b-79705c8b2884", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-jaxws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxws@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c545ebd0-2eab-59d5-8dc9-77e347eba731", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-jaxws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxws@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b9be0bc3-6ea0-53fd-8087-129a45f7ee22", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-jaxws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxws@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:066e45f2-efc4-5314-910a-8926c686bb99", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-jaxws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxws@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b665109b-7662-5bc4-8da2-4107eb9b5290", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-jaxws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxws@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:1820af81-008a-527f-a98a-fecf1c4e9f96", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-jaxws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxws@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:9931c41f-985c-5581-98d8-798de7815ff0", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-jaxws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxws@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:732619f0-51bb-5f51-98f8-e06ccca06df1", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-jaxws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxws@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d80bc082-8c9b-5ab9-8cb6-e2a2785bbbce", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-jaxws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxws@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7fb6db1e-9ea9-5617-8a68-d1348883de6e", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-jaxws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxws@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:cce2a7ac-d7b8-56bc-82d0-e62b8a896afb", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-jaxws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxws@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c6256471-0632-5c6d-a646-92b0521e9e97", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-jaxws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxws@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:531553f7-a598-5f63-a051-8c76df8bf0c3", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-jaxws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxws@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f5da67a4-126a-5bbe-a81b-26eca2e594ca", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-jaxws 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxws@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:23b98b2f-7c00-5fc3-911a-cedd1f639591", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-jaxws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxws@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4c6ab552-8936-576f-aa71-6ffafc659e4b", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.systests:cxf-systests-jaxws 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxws@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3cd90b2f-cfbc-57fe-b36a-b1896bad8190", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-jaxws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxws@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:aeaf9dea-8b3d-5625-8bbe-8a1c1e173c76", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-jaxws 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxws@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:cefeefcc-d356-5074-b959-48a7710292cd", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-jaxws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxws@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:6e25236a-0108-52a5-b997-8d5a8c178a9f", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-jaxws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxws@3.5.11-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-jaxws@3.5.11-tuxcare.4" } ] }