{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:4ad35db5-ab10-50ed-9402-cd1f98fe3399", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-tracing@3.5.11-tuxcare.4", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-microprofile-tracing", "version": "3.5.11-tuxcare.4", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-tracing@3.5.11-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:aa7b4493-efbc-5579-9a31-483c681847c3", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-microprofile-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-tracing@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:14bc3681-1e9b-55db-baaf-1ffdf078eac3", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-microprofile-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-tracing@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:45b0b30e-73e1-5244-9786-d64544eb306d", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-microprofile-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-tracing@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a5a6c24b-400b-54a0-bd7c-7aa52d849c2f", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-microprofile-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-tracing@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0628ec94-9c2f-50bb-8098-7acb24044633", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-microprofile-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-tracing@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:fc2690fe-ffb8-5c99-9951-a7560d606f2b", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-microprofile-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-tracing@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e337f5d7-50c1-5208-805b-bad13a5e3f77", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-microprofile-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-tracing@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d8a1c39e-7bd5-54e0-9382-408cdad7965a", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-microprofile-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-tracing@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:5b60bc0e-3c87-553b-8f27-f8b7842cfe67", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-microprofile-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-tracing@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:1fb39e30-485f-5213-9ff6-71ea4dedafca", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-microprofile-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-tracing@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:df4838bf-ff53-5e9e-b1c2-40d25f58fb99", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-microprofile-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-tracing@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f0d72499-805b-55d3-ae7a-599eeca117df", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-microprofile-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-tracing@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:42a9dbfa-d88e-51db-aa9e-c852a092ff00", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-microprofile-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-tracing@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:65bb9bd7-ba9b-57d0-b7cf-f198a4128e6b", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-microprofile-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-tracing@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:aed1d3a9-da64-559d-97b9-2f8391ff53a2", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-microprofile-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-tracing@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:eab302f4-31ff-5dab-8ac4-7d897a4ffe0a", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-microprofile-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-tracing@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:00424c52-31e4-5395-9f72-fabf53867f9d", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-microprofile-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-tracing@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e3dc8d30-8c6b-5731-9dd8-713020f30978", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-microprofile-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-tracing@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4462e299-ba47-5aee-abfc-97140fe49039", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-microprofile-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-tracing@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:1617a10e-c0e8-5334-addc-44d812866a71", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-microprofile-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-tracing@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8fa4119a-f432-5357-b90d-68a34efe29ce", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-microprofile-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-tracing@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0ed39c8a-b77f-575f-be6d-8d1e22225ac3", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-microprofile-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-tracing@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0502202e-fa45-5feb-93ce-7e5b2a0b3c52", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-microprofile-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-tracing@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ae135bb4-87e0-5ac2-bde0-2cd6be01162b", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-microprofile-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-tracing@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3b31bbac-a985-5e8d-9549-50b6389975dc", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-microprofile-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-tracing@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3c7a199f-61b0-52a8-9f74-14c128b5429c", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-microprofile-tracing 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-tracing@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b92f8e68-4e37-5f1e-a881-2ba330928c2b", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-microprofile-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-tracing@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a9be96b9-3474-52b4-8d5e-69aedb7b5511", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.systests:cxf-systests-microprofile-tracing 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-tracing@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e564f5f6-0888-5534-a1a1-aa12811ea5c5", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-microprofile-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-tracing@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:52255b8f-db25-5ad3-8150-53e89af2a60c", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-microprofile-tracing 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-tracing@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:bbf0e4a0-e235-5c8f-ba3a-fe664fd45742", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-microprofile-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-tracing@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3e769a37-3b26-5056-8b61-575a2f1c8c46", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-microprofile-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-tracing@3.5.11-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-tracing@3.5.11-tuxcare.4" } ] }