{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:4a56d089-9f88-5c1e-892b-cf6261876439", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.11-tuxcare.1", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-rs-sse-jetty", "version": "3.5.11-tuxcare.1", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.11-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:b3558ac0-9de1-5831-9c1d-ca6e93055360", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-sse-jetty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c50fbadf-bf38-5e7d-9d94-b29fef2c7ae5", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-sse-jetty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6b12813e-4e54-5498-afaf-38f52cccb8e0", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-sse-jetty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f99ffb73-aa2f-54d0-ba45-58e99c133b9b", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-sse-jetty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:eb76802a-ed35-5914-8138-881570dfe659", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-sse-jetty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4f989ab3-2ff6-5128-92fa-d1626bce18f8", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-sse-jetty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:70188cd4-4182-5437-b864-675a18358edb", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-sse-jetty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e78d82da-1429-5a0d-a6b2-fe24a129ca83", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-sse-jetty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:117d3d82-74de-565f-997b-ec7a8b112f1a", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-sse-jetty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:587d977f-54a6-5ccc-85de-90ba41b2f388", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-sse-jetty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1c3988c4-f0e6-5f60-9e0b-f5f2543fad20", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-sse-jetty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:16a50564-9961-5958-acd2-efdbde45e110", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-sse-jetty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8780fa67-2e56-57a6-be2f-06bed18ef7d3", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-sse-jetty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a2b17e0f-8828-5e52-8146-a1ae41b39f8e", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-sse-jetty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:68b09ea2-73b9-586c-80dd-3cda54ae24b6", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-sse-jetty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1dc4fd4c-9772-580f-8a1d-352e7cada3c3", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-sse-jetty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:78811870-f76d-5710-ab45-21c918c8f0d7", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-sse-jetty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8f88c5da-b48b-5840-ad47-8658e729780e", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-sse-jetty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f6a7235f-e8b9-5b91-9a74-0011584a727c", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-sse-jetty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7bc93f94-e438-5cc7-ac7c-5cb159d216cd", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-sse-jetty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:539d21dc-1358-5ed9-9f8c-dfaafce8a28f", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-sse-jetty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e9f5e7df-fbe2-5a0d-b9ea-d174a0dc5a5f", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-sse-jetty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:37ee9267-2751-5dfa-bacf-0e0f184e1e32", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-sse-jetty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9843797a-443b-590a-b7ec-7a4dec288570", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-sse-jetty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9a77e59c-7dab-56fe-9204-35c9a73b26e4", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-sse-jetty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1887edcd-8368-559d-a85a-4f62e94dd475", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-rs-sse-jetty 3.5.11-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ddc79d08-e889-5276-bacf-cb6394444e89", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-sse-jetty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:31ffa99a-20f6-55cd-89a3-20dd8a672e59", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.systests:cxf-systests-rs-sse-jetty 3.5.11-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:de959846-9f64-5b46-8e60-ad7a7e44e13f", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-sse-jetty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5478f1c8-f8d0-511f-8611-48e8fa3bd40e", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-rs-sse-jetty 3.5.11-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:540fad3d-eabe-5733-a1ff-d1c8bb888ebb", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-sse-jetty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:323093a1-d31e-5536-a592-d5e5bf939839", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-sse-jetty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.11-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.11-tuxcare.1" } ] }