{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:8bbb5435-07eb-563d-8b50-1eb37e75acb8", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.3", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-microprofile-nocdi", "version": "3.5.11-tuxcare.3", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:e4d6ba23-5454-5a1f-8352-0b4984c3ff4d", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:dca8c5d0-e33e-5053-b7a8-1ea8f0a5a90c", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:35db13b2-a28a-5499-8f65-d05d78971b0e", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9ded246b-f0fd-5466-9b0a-0d06d0684e26", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:af6ac5e5-bb1c-50fb-b053-5b667a2da0d1", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bf8f3eae-29e6-5221-ba39-a91956e3c36f", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:29f40c92-e3d1-595a-80aa-1878e0eb37ea", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:906eb11b-3d68-5c7c-b909-a8f424e4020f", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:20d79f0a-fc8b-50fa-9085-bed0c3997572", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d5ac89db-a663-58e9-ba70-854724244698", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:16d1c652-2fe1-5624-9ab8-b0f9e3ed0552", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4bc03c4d-1557-5837-89d7-9b94cd09edd9", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:94b46fa8-cd5a-5132-a2d9-d9f18508183b", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b124eefc-60ae-5dba-bd52-995a0b5d0126", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5be1a7e9-82ca-55c1-93e8-785cd4a3cf76", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f75a8f77-e97e-51be-ba50-3f13e3e764f5", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:09602593-dd25-5433-a3e6-c7fc407123ed", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:34e7014c-6157-5ec1-8add-562bbc09d946", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d6077625-3a96-5117-96d4-455e72e5380f", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6697d8cc-363e-5772-84b7-444b733cb3a0", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0cb00026-f7dd-5906-9329-289755627728", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b7d0f5df-4623-5969-a23a-4823428b6a0b", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:04514bb2-5269-5d3f-8094-c8ea62eb825d", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6712f6d9-4273-5a38-abfb-d08be396d225", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:71cda27e-039f-5dc3-a210-f50cf0494f6e", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:370059cf-f84c-5ce1-b369-dc770c96aa6a", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-microprofile-nocdi 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2856b041-25a8-55ed-adba-75dadaa2e5c1", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8644aacf-9389-5f8a-b5fa-3677384c8213", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.systests:cxf-systests-microprofile-nocdi 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:593e53dd-89e3-570e-a796-a87067b7ba15", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b811e81d-4f95-55f2-91d5-64bc1aa5bb9b", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-microprofile-nocdi 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:727719b4-fc74-570c-8ff1-082b8a0e1900", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1362c181-2832-54ed-8c33-57a7acd6d1c5", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.3" } ] }