{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:05e7873a-93b6-5cef-8330-c1398b175fcf", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.9-tuxcare.3", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-microprofile-weld", "version": "3.5.9-tuxcare.3", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.9-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:ceebe510-5d2c-5a8e-81e6-73da9a0648b1", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-microprofile-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ef040a31-acd6-5d99-b491-da5bb54ba087", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-microprofile-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e64bc2ac-fc58-5ee1-80d6-d45c10772a4d", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-microprofile-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bfb06a8b-8fc9-509e-b513-6cb5c66c62b5", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-microprofile-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6d5229b7-c431-52ee-b766-2ae133a8c44f", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-microprofile-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1870e185-3abf-5383-9460-e0f4b6550a87", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-microprofile-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fc556746-d62e-5331-a5f0-8f9935281727", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-microprofile-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:307a26d7-d93c-5a48-8cb4-41d162bc69e5", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-microprofile-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:13833f48-7304-5e5d-880d-d1fca7989558", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-microprofile-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f4cf40b5-c043-5060-8333-6d830355c8a4", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-microprofile-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d5900913-347a-527f-980c-085782617c05", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-microprofile-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d686685a-cd6a-5d59-b971-96734bb17b69", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-microprofile-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0f193240-0022-5d26-8d4e-33eba77bad45", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-microprofile-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0dd5460d-1175-586e-9fd1-56455ecbd994", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-microprofile-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:178790af-2c7b-5509-8b95-ec864038e1d8", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-microprofile-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:cf9aabc5-e413-5135-b25b-836f1744d1ef", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-microprofile-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:36a3717b-3ae3-52c6-83fc-142b6ce716fb", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf.systests:cxf-systests-microprofile-weld 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7cd10185-7c56-5c92-8de9-bd341ec5e099", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-microprofile-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:87edbe88-35bf-533d-8078-2e66144f178c", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-microprofile-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:62f05ab1-8cf8-5ac7-bda0-c8bdff82632c", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-microprofile-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:de023dee-707d-5e50-9430-ff5f591a365d", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-microprofile-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b30a4e3b-0e21-5568-8346-dd4df723fc76", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-microprofile-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ce9730b0-6847-5d2d-93e5-2d43d91f40ed", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-microprofile-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:17023d5e-23bf-5897-b8a3-dd8f887e5f0e", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-microprofile-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f496fd5e-16d1-5afd-b7bf-867824d1fe2b", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-microprofile-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0a5a6713-bf65-5bf8-89de-85139c163153", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-microprofile-weld 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:086ab558-2d66-5288-b01a-428fe724969a", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-microprofile-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8fc31d02-6c16-53ed-9b63-8fefe0c195b7", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-microprofile-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:945323c0-d303-5f3c-803c-048566fdda3d", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-microprofile-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e0ecae82-6871-551f-8f58-c876d30971a1", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-microprofile-weld 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e54191ce-3070-5e54-85a6-f737b5aaee2d", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-microprofile-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c6c40cd5-b7b4-50ee-ab87-24f3fc349239", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-microprofile-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ab595368-478a-5144-84a6-3cb0ef9deb5c", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-microprofile-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8c5afb8d-809a-5009-93ee-c59ae25fd713", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-microprofile-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.9-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-weld@3.5.9-tuxcare.3" } ] }