{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:ee6b0c16-2489-5b5e-b0aa-c11e703ffaa8", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9.tuxcare.1", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-rs-security", "version": "3.5.9.tuxcare.1", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9.tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:915551d3-979d-59a2-9f9b-c09163f5ddf6", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3f4274c1-fcd2-530a-9629-fc8e16d7ef70", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0d931c3f-2a91-591f-82bc-5e54c75db36e", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a2e72f46-c6c1-59cb-b7a1-48e02f31d897", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4794826a-dd53-5494-bd36-b6b6c35a6e5e", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cd9be751-70df-556f-b4e6-dd4195b52ad9", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c4fe507c-89e8-5e04-a759-6ebaa5bf8a79", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ed51bd44-a4da-53cf-9426-b8560e2bfd52", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:866abc5f-dda1-5ec0-8a4a-d77777aad12b", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9dca1a9b-dfce-54a9-9e12-24a76ae34819", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4f705e38-ac50-50b2-affb-e667737a5579", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4235242e-e831-5cbb-ae8a-d15b484a1649", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4a2f89cc-0d3c-585e-9eaf-4f67282b9f0d", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fb134f3f-7310-5ff8-afb2-9169b563cb9b", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c9058cbe-b018-5fd4-b3b7-8500abfe1cf4", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6f3765e4-622a-5434-b6f6-6d3154b64270", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6148aecf-ea39-508d-a9ac-2cfea8ed5667", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf.systests:cxf-systests-rs-security 3.5.9.tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:787ada0e-746a-5d2c-a409-934cdce28ce3", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:58363859-8a25-5065-be89-2b2604600e81", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e4383938-72d5-56d0-9537-783e57467faf", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1bba6606-27eb-5afd-a83c-b8eadcfe0681", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bb598c4f-94f9-5863-96b2-ba6317817540", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fba7aa83-9998-53c5-9699-0acf4f57b9d4", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3f5866bc-333a-5d7c-abdf-f27cb563e347", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:632362f0-233d-55ea-a994-6dc6aca11cc5", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3c1926c4-c1b3-5b81-a6c0-e8067dfc3e9b", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-rs-security 3.5.9.tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:601bde76-c893-59ed-bc92-f8d2cfea77dd", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:61530829-de89-50a4-abb1-bddf5a81dc4c", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cba9ff17-25e8-57f1-bb6b-9cf70f297868", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:68bf2a80-0be9-5a10-b8e6-e372d3f8d34a", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-rs-security 3.5.9.tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d1ae07bf-4ece-5175-a702-8d307db0932a", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:47065a82-31a6-507d-a709-89884962333b", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5b80f308-b897-5ac2-865e-928d4d9f94b0", "id": "CVE-2025-48795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-48795 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:091bcf78-5f43-57fb-8849-dcd14b3158c4", "id": "CVE-2025-48913", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-48913 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9.tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9.tuxcare.1" } ] }