{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:2a4dbdea-9c6f-57f5-ab6f-6459b8728f35", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.3", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-rs-sse-base", "version": "3.5.9-tuxcare.3", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:b9228b6c-6318-5383-bfd5-efa05110795a", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ab663780-860e-5add-bf91-684674177e10", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1f0dd276-ab12-5d13-a0f3-1c452db0681b", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4b91823c-abec-572d-95ca-5516b5a4ce42", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e387029c-b412-5e3e-9348-386769714c1f", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b592f92e-bd5a-5922-82d7-fc4ac07f906f", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:edb5b912-68e4-5e10-86c5-d275d25b9176", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ce391d79-21bc-592e-bb6c-29633e85cd1e", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d3bca410-9f49-5928-88c1-759adc076f65", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:62cb7bef-4fed-58cc-845b-3854f2d79c14", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9ebddddc-11bf-54fb-b89f-729b122b7dae", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f394af64-4984-5d7d-a65e-e1ef708c5666", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bc4e32a6-4078-53f1-aea1-25b7e8dceec8", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1d738015-b862-5eec-99a7-6c0b4b468705", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:259f2b4b-3cd1-5a01-a305-75865b7dbb95", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:92f9060e-b035-5cbb-85f9-37824116d8bd", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9f55782a-d565-5ed1-90c3-d0c96a547a65", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf.systests:cxf-systests-rs-sse-base 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:aee30cb4-b6aa-5977-8112-f4a4cf251f31", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:257a8a19-f7ba-51de-954c-c253a8ca0936", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e81b18cb-11d7-5f4e-a0b9-5595ea2d1393", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3495e118-9bb5-5a80-b701-57f216015ae4", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0cc9f566-c5b4-563d-9b99-032054c70fcf", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2e9a505c-a36f-5993-8ef8-696d95e4c259", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7ca48327-598c-581f-a00f-a8e655636145", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6184a13d-1974-5354-a656-041a1977d55b", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f55bfda9-726a-5a73-b9dd-b48166e107d2", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-rs-sse-base 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f0a3a1c7-b22a-5c85-b628-b224e5b2e849", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f2746cb3-ea80-59f7-b678-7a5f855b0005", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:89859255-8202-5250-8f28-4f118cb9ece1", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7f98de18-f19e-50f5-a39d-114b18fe3ff9", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-rs-sse-base 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fac48987-8663-5b4e-aa1e-6ba840e395e6", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7de99ead-d15c-5b3a-abd4-118cd9a63c35", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a27523d3-8973-551e-9c5c-946482155513", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d93dbcd0-9aa4-5d8d-b879-eebd6277a91c", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.3" } ] }