{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:7bea34d0-ebe8-53be-ba9b-4e78a23fd593", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.4", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-rs-sse-base", "version": "3.5.9-tuxcare.4", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:7eb9b98f-04f4-53a7-9be6-771d0893e78d", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:80de53eb-b33a-5e4f-b4a8-d675908f65ee", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:5d1d3c4b-69d2-5228-917b-9451df0b429e", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a714df10-84c2-55c0-addf-69446a1e518d", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7742d53a-3f44-53d3-8cbe-0eaa36f51bc1", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d9ae77ef-e3d6-5598-b61a-3f8dcad8b43f", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:54496fbc-d9b3-5bbe-9d3e-b6e7e4c435c2", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:45b53440-a64d-5212-a474-e7949f95dff8", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3202febe-243a-5a55-910b-481ab8e05429", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4004e718-80c8-59c0-a018-e7f5c2292e87", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7e0922fe-64ba-5ae1-934f-9da1945435f5", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f1f23106-9256-5dc0-a9eb-00aeb7841191", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3bdf4934-99ef-5ab1-bc8e-5306dc307ea2", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d7a9d626-35ce-5988-a404-35a2be3d0bfc", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f8551150-e919-5a8e-a7ad-3f0c3f36e340", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:91c59b2f-e441-5645-8160-d2205570a6fa", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:63aad5c6-0077-5308-8aa5-1dedd7187516", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf.systests:cxf-systests-rs-sse-base 3.5.9-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0d7380e6-6c7f-5ef5-902d-b9fc71243ac6", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:513ecd7f-ee8f-5fa7-ab4f-91bc25766676", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a6a2238c-fdb1-5537-ae37-ae1a889d5ffc", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:01ffd8fc-79cd-52e8-a331-f5b9a38c4aba", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:5c115314-1bbe-55ce-a743-afb5e6de8d7b", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:dfa40473-8948-5bf4-ba7b-e880c0eb0cd0", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:effc506a-1b43-5d87-9ad3-b0be71c4ff31", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:86426d45-d3bd-530a-819f-786da05b7316", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e2b13dce-08ff-5c6d-a748-043e1afdc0dc", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-rs-sse-base 3.5.9-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:52def509-ad32-523a-9ee6-ae310a13048d", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:40a1334e-91df-5677-b9da-36b40c6f7472", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8f1993f1-9870-5707-9a84-faa078edba24", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:12ad9f64-caed-5550-ae2d-124349c9c996", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-rs-sse-base 3.5.9-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:81e145e9-0142-598a-8c2b-dad1fd0daeb2", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:745a9994-2876-50ed-a625-65d055a82ba5", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:5138ab15-58b9-5926-8e1d-29894dd88be1", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:55d6ad75-0d79-5a23-a84a-d6d7672a2586", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-base@3.5.9-tuxcare.4" } ] }