{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:139f8de9-999a-50cb-aaa9-f273f7b93bdf", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.2", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-microprofile-async", "version": "3.5.11-tuxcare.2", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:e9543934-8610-5964-b1b5-c26d23483275", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-microprofile-async." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:af570778-0006-5d70-923e-17eaa5e93146", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-microprofile-async." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:55c8ba96-6dc4-528c-81d0-e1111f73f81e", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-microprofile-async." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b9e0ace3-17f7-5ca7-9868-4935e39f5bbc", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-microprofile-async." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:99ec09bd-a9ee-5b56-a97f-bb2d8d7756b8", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-microprofile-async." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a17ed492-018e-5756-ab53-4c3d1c90d1ab", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-microprofile-async." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e67bcb9e-2db9-5e5d-92f7-96335ea89d46", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-microprofile-async." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f2c084d7-d564-5881-a399-685c5a1f0d3c", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-microprofile-async." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0b06b2e3-3b24-5d59-b4e8-10bea96b1b7a", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-microprofile-async." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a163cffb-8fad-564c-8692-16b6efe9045e", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-microprofile-async." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:43563938-00eb-5895-8753-610a6bdf3c4b", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-microprofile-async." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:66ab5744-eb69-5234-8335-fd4e50b0f677", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-microprofile-async." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0ff52341-205b-561b-94de-7efce42b11e5", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-microprofile-async." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:55062048-32d3-5b2f-8178-22aa10c2165d", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-microprofile-async." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d3759497-ef6b-59b2-b977-f6b12dd5625c", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-microprofile-async." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f1f01130-def2-5826-9a00-afdd8ed3968c", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-microprofile-async." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:30e8a321-6c1d-534b-a0fc-9cdacbb62388", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-microprofile-async." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e00c4edd-1c21-5fc7-bb49-ad761154292c", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-microprofile-async." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8a2aeefa-ffba-5258-9cb7-4eb2fa5df868", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-microprofile-async." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:34718a7c-183d-56d7-b246-85e0b00c59b8", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-microprofile-async." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e4d71d0d-e793-5579-a726-bd671bd68add", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-microprofile-async." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:93b3f652-300f-5fa0-9d26-f102cbb22ef7", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-microprofile-async." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:30dd4be4-f02d-5b23-9468-e0959b8cc4cc", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-microprofile-async." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:741fb58b-0003-58cd-a08f-5eb01b16f735", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-microprofile-async." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f7209dfd-f2e8-5d63-9f7b-c02b6c4d4c74", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-microprofile-async." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:92308aed-c9f3-5f1b-bd94-4ed6c0f69b72", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-microprofile-async 3.5.11-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3923998e-eab4-5669-8d9d-c26b073d5508", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-microprofile-async." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:74aae2b8-c2d1-5893-ae59-6e98a5396889", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.systests:cxf-systests-microprofile-async 3.5.11-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4b3d17e0-586d-53b9-a983-db8acc40249f", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-microprofile-async." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b247c082-6b90-52f4-9354-1235130c3bc7", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-microprofile-async 3.5.11-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:59809514-b71a-5c2f-a101-b9949e5b9091", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-microprofile-async." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:70437b84-ad5c-5b5d-86bd-56e184cd05a9", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-microprofile-async." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.2" } ] }