{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:b04ea06d-7a1a-506a-a4c8-048c67a9984e", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.4", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-microprofile-nocdi", "version": "3.5.11-tuxcare.4", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:3f7eb72a-b70c-5b31-bd30-d40004db8cf7", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f041220a-c2e2-5c19-b416-84fe12ec60a7", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:9ed82abc-6240-561d-873b-48bf49c32654", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:9940ca79-5ab9-57b1-b9b5-bb15cc3606b9", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c49ba3e1-4715-5091-b1d4-377103f5f9c7", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f5fe4c73-f575-5ad5-a690-23709864f6ad", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:444551c7-8675-52d1-a21f-a7e500f48144", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:05abac93-136e-58c6-98c2-240d086cf504", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:fd2dcb6a-8ebe-54e6-8e6a-9d6ede09173d", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0565849a-421b-5823-bb46-35ff5c7d6559", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ba3539dd-c3b0-5800-9a1b-856b18af558e", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2f838130-5d46-50ae-8fe1-6d918fb8827e", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:98aff61e-47e8-554d-ba24-a55e02ef20f9", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:791c79c4-e4cc-5b17-8e02-e527f89f2376", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:58e27e21-72e2-5010-a348-76ecf6717d61", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:fdfb1c2e-a4dc-5196-a222-87fb2a08c611", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3cdb9972-2ced-54ac-b092-266d2967d729", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f92bb493-907d-56be-a106-3c1aa656a606", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ee97d98f-63f7-5116-82c7-821cc8ba744d", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f2ed69e4-56db-5191-aa81-5bc1301f2f9b", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ace877fa-8b3b-5156-878f-16cf9e064396", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f16e76aa-b75f-5b7d-b221-a2fb9204576c", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c27e78b5-856b-5312-b32a-9b356a1d2658", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ed36927a-b09b-52d4-bd63-bad684be308a", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:1cb96362-864c-550c-b1fd-9b67e42fb6d4", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:303812d6-3cf4-5391-8c73-867ee747909e", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-microprofile-nocdi 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a347afaa-7f40-5eac-838a-71eb216a5370", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:dfbdb758-4cd2-55ba-a1c8-fd09da81432a", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.systests:cxf-systests-microprofile-nocdi 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7fbff6c2-908b-51cc-b5d6-16b867eff98f", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c7acd157-6c77-5c97-a878-7f72a3aade3e", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-microprofile-nocdi 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:15569735-33a8-5ea5-ac62-0f9a3d9ed418", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3fb8088f-bbc5-5f4d-8dc8-7d5fc21d1d3f", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.11-tuxcare.4" } ] }