{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:6d76cd6e-96d5-53e6-b596-781723fd352d", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.6", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-microprofile-async", "version": "3.5.11-tuxcare.6", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.6" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:57ff9ed8-33b8-599a-ab9c-dc95fb307568", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-microprofile-async." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:b8e052bc-340b-5440-abe3-59d5fe25627e", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-microprofile-async." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:1174daec-eb6d-5312-8f63-80075ffa4e0c", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-microprofile-async." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:cc0b44d5-1ad2-52e6-8708-1d86c9b3a30b", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-microprofile-async." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:18f96f6a-b28a-5ad7-99a1-cadec856100b", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-microprofile-async." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:290c3d51-69a6-5ece-ad89-3fe567216f52", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-microprofile-async." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:2eb6999f-da60-5e4d-b148-b6ba50bfcc17", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-microprofile-async." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:9b712330-b94a-5d1d-bd4d-27f293379940", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-microprofile-async." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:110c2faf-28e5-5166-8769-e8fb4b39afac", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-microprofile-async." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:33fd6e48-8dc9-52d1-a51b-92fdd6c270ae", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-microprofile-async." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:e89fcffe-d196-5031-8db1-164fc45a7b4c", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-microprofile-async." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:0864f94b-44ab-50a9-a0bc-29844dd43a61", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-microprofile-async." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:1e2e581d-fe8d-5568-8287-10edb07e2735", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-microprofile-async." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:1ce02490-cb96-5c5c-90eb-c69cc6bdca25", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-microprofile-async." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:6c3650d1-e73c-5366-84fb-62f3c0a3337d", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-microprofile-async." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:3f49b058-f963-575f-8eb8-ebf2e995f565", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-microprofile-async." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:c1146872-bccb-5e3b-9e31-f68d3389647f", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-microprofile-async." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:1342a313-652c-5d88-94ac-88b6c0b3051d", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-microprofile-async." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:1cdc397f-2f46-5c6d-a548-1b6b2bbcac2d", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-microprofile-async." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:e008715b-78b7-576f-83f4-2fb3da682d71", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-microprofile-async." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:61ae2d0c-358c-548b-8a47-10450729c067", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-microprofile-async." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:7df40954-9437-56d4-b23a-c70827ec8ca5", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-microprofile-async." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:0679ab52-01ce-507a-a3c8-41a4b7104162", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-microprofile-async." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:f01bfe2b-e7a4-5f38-af00-9f10d11a5d4d", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-microprofile-async." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:929f8e60-9203-525a-82e9-2249ef2b44af", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-microprofile-async." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:32c7c6a3-3a65-5d9a-bae3-ed0570e82fe0", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-microprofile-async 3.5.11-tuxcare.6." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:3677fac1-d013-540d-978c-d5aa5481f6db", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-microprofile-async." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:162ac2d3-efb9-5b0a-bab8-d26fae2b1fc2", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.systests:cxf-systests-microprofile-async 3.5.11-tuxcare.6." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:15fc7898-6b24-5b09-918b-6e6dc7eff6d9", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-microprofile-async." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:c5113e64-d2f2-5565-a5cf-77b3cdf95216", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-microprofile-async 3.5.11-tuxcare.6." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:3ce46cc7-864b-5b8e-ad76-7279958c1ee6", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-microprofile-async." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:95a8dc33-cb29-5768-a9dd-34f6a23e3ce8", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-microprofile-async." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.6" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-async@3.5.11-tuxcare.6" } ] }