{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:ac9398bf-e23b-515a-886c-a96f71ad2bbe", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.2", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-rs-sse-base", "version": "3.5.9-tuxcare.2", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:4d77db16-6880-5e0e-8d3e-184b27377486", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:98d906f8-1fc9-55fb-8767-b8b674c3630a", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:088c3bd0-3240-5c08-8336-cd7a46fe0105", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:37ad898a-6482-50ea-a691-d3ff6c73f7d6", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e360fda4-cfe3-5c94-b7c4-0852d3148ff1", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ec30d64f-c03e-5faa-b689-bc73908736a5", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:55d7d624-4f4f-532f-bd39-e4880e905df0", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1c54eec0-5200-5d67-93d1-a9188844e9fa", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:76392c01-30ab-54e6-8431-1b7ec6423fa7", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ee92ac0e-d0d7-5ab4-ac59-dc9855527e96", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e5c98cc4-94ae-55cc-b8a8-dc87f3e39999", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:53468375-46f7-5e55-a945-6b1b2c323b21", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3c9a7b1a-f9f1-5422-928d-885ddf020861", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4e029ab3-6bde-55a1-88c8-3e787de2335c", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1022d8be-3bb2-5987-9cb2-275fb2b25695", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:616d7964-d63b-592a-8930-4f3c806ef399", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:807d35b1-d01f-58d2-b45f-82760363e726", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf.systests:cxf-systests-rs-sse-base 3.5.9-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:488998f7-04d5-5cb4-977d-0a42b3944850", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ee29f654-da8a-55fe-ba1d-0b9111a3723a", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3f91eb43-d0a9-5685-bf42-60aa554d7cfd", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:48cbf278-be6d-54c1-8799-da0e19696bd3", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5f706ddd-517e-5324-a1c0-8af015e45e2b", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5e28d502-cb6b-5504-a446-7555e5c2f4fa", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d505a447-de69-5d4c-90e5-fe24e7c5311d", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:97eee31c-4f2b-5482-a38a-4b4d6432e276", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:40e9a4d8-25b1-594b-a67d-42faad0cde69", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-rs-sse-base 3.5.9-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a9dfb8c6-7077-5e7a-b7e1-3d9835af4929", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1bf3b04b-976e-566c-8d8c-c846a09bb172", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d02a0a01-c466-59be-bf24-7fae9b3e1dfa", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c0b7d2ab-551b-53fc-b0d8-0f858faeb29b", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-rs-sse-base 3.5.9-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:741734e8-ef70-5a6d-8f11-2c1939561873", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0a8e7502-3c5c-5d2f-a3a8-554207792362", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a6e3fd4d-078b-5f68-98dc-037c2d7bf3e0", "id": "CVE-2025-48795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-48795 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f3a72771-7748-5d17-abdc-8a2785ca567b", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.2" } ] }