{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:e72281d2-aad2-5b6f-a5bb-b951cc72be64", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.11-tuxcare.1", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-microprofile-weld", "version": "3.5.11-tuxcare.1", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.11-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:8ffcd573-f66b-5801-9b03-867eae41193e", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-microprofile-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7e44fba5-5a44-5fb9-8563-5d6580522798", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-microprofile-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b9b67c72-1697-5dbb-a970-578dbc6bf2e1", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-microprofile-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dafc3292-a50d-5eb0-bc82-96382d2740ea", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-microprofile-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f554546d-3a49-5afb-aebf-ca99295d1422", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-microprofile-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fbfd2855-4387-544f-923a-f82ae078e17b", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-microprofile-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f40ed94d-d47d-552c-bdac-3d8e7334ce01", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-microprofile-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2ce06bbc-a5a7-5925-bf74-c2529446ae2c", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-microprofile-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:65d28371-f8d7-54ae-838a-5c590751f09b", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-microprofile-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ce0dee52-780b-58fe-a6d9-899d02528e9d", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-microprofile-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7d05f9b7-a28f-5f86-b016-ae9695802cf3", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-microprofile-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b645b0ea-6ef5-5b6b-959d-c9f40b4e80a3", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-microprofile-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:920b2bf1-5bb9-5ef6-9966-1d751180b782", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-microprofile-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:58f74f1b-e060-55a5-bbcc-f30eafd827c2", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-microprofile-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b7baf4fe-0fe2-5293-96a9-f08f5741eba3", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-microprofile-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9adc7456-6ac8-5805-bec5-f58ecb603211", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-microprofile-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:76774ac7-3fe1-5b23-9351-4e5f089c9dcf", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-microprofile-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c9596f81-f994-5b6d-b164-2a14857d9eee", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-microprofile-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0e2587c8-7978-5d13-97f0-370bfab44f88", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-microprofile-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:57fbdce6-09e9-5be3-a940-d1dbea7a39f5", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-microprofile-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5f058446-d9ff-5d33-a6e0-908446ed1037", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-microprofile-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7d57eece-f3d4-522b-9523-224e448de03e", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-microprofile-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4a2e3297-11e1-5613-af94-3b762cc2984e", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-microprofile-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5dbdb8cc-bbd9-5e4c-94a8-08a26f2fc5ce", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-microprofile-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b6b1d512-47b9-5a35-8053-524aa2d5d4ec", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-microprofile-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:32fa53f5-a482-5cd0-b4cf-44e5a0a2756b", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-microprofile-weld 3.5.11-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:70cd222e-76b1-5963-b85b-01516a940cd0", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-microprofile-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1feb2c12-0282-5664-bad8-f4b91d83646e", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.systests:cxf-systests-microprofile-weld 3.5.11-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6ef54266-613c-58cf-9610-fbb5fd36f3f8", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-microprofile-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a8f16a9b-08c9-5e4d-bef0-b0a227e3fc43", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-microprofile-weld 3.5.11-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:62f68f9f-8f59-528a-8980-2575e62c2eae", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-microprofile-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a65a4405-cfed-5496-abf6-33a3ce35ff16", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-microprofile-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.11-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.11-tuxcare.1" } ] }