{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:00d6cece-5ab5-5567-88a2-ea15dad69f2a", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.9-tuxcare.3", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-ldap", "version": "3.5.9-tuxcare.3", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.9-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:49ecb580-a599-5a2c-8660-ed38003a2d1d", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9d8f3bf8-4357-5754-b36b-6aa7de49fb68", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a3e54d25-8060-557f-8fe0-291aed0735fe", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:89c68e05-4fa8-5316-ab0c-3ce3f0670120", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:23ab6069-c22c-562a-845d-6219aec8c7d9", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b6993a3a-ad7d-54bf-8808-2c42ae0f791c", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5e9bd33c-5947-5ede-a8d8-0c236ae77dbc", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7d0d5944-0f25-5bc7-90a0-fbfa74f68e88", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a978c270-a771-561f-b800-88fec09d2126", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8e6e6436-0734-5674-8988-18cd7e8d456d", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ca3e0408-0227-54d8-87b7-c1998513a91f", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5fc1b619-ccb1-57eb-a12d-5a4aaa3cf9aa", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7ced0278-991d-5141-9217-f82702e89ec5", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8122a4d3-81f4-5223-9494-adca2ae9f520", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:58598d33-a906-57bf-9f43-04e0a57cf0bd", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:70a85559-7540-5190-839c-46071a1a9ee5", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a33493fc-8b6e-5389-a259-2ca8f04392d5", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf.systests:cxf-systests-ldap 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:83921b35-ff94-5352-9bcc-2b9bccfae0bd", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:99ca7d82-5df9-583c-b6b0-fcceb4c992ad", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f98edbcd-b777-56ae-84c8-f89084f30850", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:713aeb8e-a443-56c2-91d3-2d51056f9f1a", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:66deb540-7d7e-5129-8a41-bf52e2c0687a", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ad0365a4-df7a-5784-a696-a18e5b7b4d65", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b5ef0cd7-66e8-55d3-a757-b33d050b0d95", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a4d63fd1-48a6-5455-8dc9-d6b00339885c", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bfee5e65-3a21-5444-8c67-b86c0022e7cc", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-ldap 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:908147e0-d16b-5a5d-b6d4-f655556c51f8", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:58571619-d905-50be-9a41-919fb3912823", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2bcfff74-016b-5fc6-b3e5-3e11c52286f3", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9b549e16-b344-561a-8748-0d123b0def8f", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-ldap 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5269309f-03bd-5903-843a-e5e0b603ad10", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:26c0c110-e029-514d-9c85-5419bb80560c", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:94bcc552-e1ee-544c-b8fb-989ed3896c71", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3d6071cd-23a7-5b1d-88f5-4565155a61f4", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.9-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ldap@3.5.9-tuxcare.3" } ] }