{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:173f7407-a910-540c-9cff-be2a94c5d96a", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.11-tuxcare.2", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-ldap", "version": "3.5.11-tuxcare.2", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.11-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:deb2567d-e0b7-5638-add7-bcf7e9d69287", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:24dced96-e676-5544-b6c0-6f6e952f0acc", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7b309ffa-ffe8-5b98-a6c0-cc54ba29ffe1", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:90df610d-49a5-5965-ad46-563c9215cf25", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:234bcb33-4f9d-54ff-8c44-94da89f2876e", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fa0e15ab-ca02-53c1-90d2-fc140a7d5f24", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:89c63407-c220-5e91-84a7-9ee7ad714a88", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:03471900-3420-5f49-a8ca-f9963d882b5b", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4a33e611-cdce-5b01-a408-08e20b607f2b", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:81bdf3cb-94f2-56f4-8255-0196537cb5eb", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3f8487ab-ec3d-5470-bccf-73253da078c8", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a104bda4-2b08-5147-8078-5e37f9ef206e", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9837b4a8-c0e2-5f0f-a20b-0ee037f38291", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:dc2b3ada-46f7-5bbf-ab85-166d1271d2dc", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8f8b0301-43c2-5e29-8c15-f7cea4ce73ff", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c5eac6da-8785-5fcf-84c4-ff24492a456e", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:573f8da8-07ec-5f21-9427-68e2cc6ae6dc", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7d766d0f-1433-5d71-afc0-a54b038a1161", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:52a7e17e-6bb1-5cb5-b9d4-2b04881f278e", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:85dbd1a2-2bd5-5847-8778-52364b36e1cd", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:da019387-8532-5c9f-bb5e-6e27a693faf2", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ddd5459a-93cc-55d0-804b-529a63586654", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1d4edd1f-48dd-57f7-b487-54085081eca4", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a399df5a-7013-5a4c-81e4-5def4151e7f4", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:833ad324-752c-5ba6-a8f0-f6b681c547b3", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:692d8c2c-b690-5ac0-bcb1-7c3d178500db", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-ldap 3.5.11-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2b0fc3b6-5099-52f9-92c8-ed78fd8bf970", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c828b8a0-037b-59ee-912d-4fbaee381a4b", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.systests:cxf-systests-ldap 3.5.11-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0c508d5f-9047-5460-a8a3-d9a32eb6f393", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:79bb803c-39b5-59b5-85a1-c5f2b1ba637e", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-ldap 3.5.11-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5b1a5b9f-25cd-576b-a360-848a371993ce", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3e783fe5-f603-5020-a8ae-0017e8d5d30c", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.11-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.11-tuxcare.2" } ] }