{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:e076f09b-523a-55fa-879c-e8934b946431", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.11-tuxcare.3", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-rs-sse-base", "version": "3.5.11-tuxcare.3", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.11-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:cc6e236b-691b-5c44-b698-d91aeb3ded40", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:831796a9-06c5-51df-8726-00d80b236d24", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:04aa1b71-fc49-52a4-a1b8-1fcab0071218", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1f3d3281-73dd-5530-b062-0fab28081c00", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1849b505-9075-53b6-b168-6382c00a63a0", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2894a7ac-55e4-53cb-8f15-14b1d328c384", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5c7c7e35-2575-56db-a4be-945837381321", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a2bed59a-d7b8-5d92-badc-6a0a7417321a", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ed392887-4d71-5dd4-9644-264bb3e49c32", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6f990fe1-a3dd-55e6-863d-d27e81870f3c", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d494a85b-d4a8-55b9-96bd-f1926e8fde5f", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:04cb1f4e-e2e8-5f78-a086-2885e5c040e6", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:23c75c41-de59-5f02-b622-afb24f447fb8", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4087348a-ed75-599d-8c84-9f0745850292", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4b6b224f-4179-5be1-b4e5-aa3e2f673884", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7104fa77-4d5f-5831-8c35-c4fb47feb6ff", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9e417932-cbc0-53ca-ac12-6fd8c434416b", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:01228551-9ab1-5bd8-a562-57a5435d4fbb", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a7e5460a-211b-5c24-91ac-5b56dc2fa4e8", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:eb26c8f4-bef3-59f4-8c42-e883dcec78a1", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fb06a491-d87e-5d72-8208-199f512d8586", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3cc85c28-6f4d-5779-a747-3851109135b3", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:31278977-e70a-5fbd-8603-cd5afc2bd0e0", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4efed89c-6f9f-515c-8933-ed151a9c0e78", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e3c6b53f-7e1c-57f0-832b-9fee97e6f586", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e960ad18-186e-556b-a50e-b8b8871e4a25", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-rs-sse-base 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4817671a-974d-53c3-ab3a-9ba9e613a9a9", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7d5cfd0a-1098-5541-aea3-4e26db4a97c3", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.systests:cxf-systests-rs-sse-base 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2eac2881-b91c-5832-a8ca-ff80870f19b2", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2caa5fba-eeb0-5bb1-ad70-29eea4cce530", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-rs-sse-base 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b8652121-f748-5fd7-bc88-5b5ab452b1e9", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c85f797a-290e-52d9-96bf-15d63551e009", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.11-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.11-tuxcare.3" } ] }