{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:02da8cd6-900f-582f-be61-bba1f8f301d9", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.1", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-rs-sse-tomcat", "version": "3.5.11-tuxcare.1", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:2b38678e-8d7e-5fea-aa2e-40cbc19bab53", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:54a50593-583b-5f23-9c97-9195508e1748", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:52e10131-4a03-5ccb-97da-b23fea4ea6a3", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:49e33041-33b0-5cdc-b10a-1738b14f9e84", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0b5b8e6c-dc00-51ff-95e5-304f359ac0bd", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:399cfba5-cfc5-5f88-9ef2-adbfb94f6f9d", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c9b54afb-2911-565c-adf1-d383089565e3", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:30c58a1f-ff3a-55ce-8889-748aaddb89ce", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b05b1168-595d-531b-9f76-df8a85d2b41d", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:16a5df2b-6eed-5590-9af8-91b2c77c6d2d", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:273ab50e-2252-59dc-a61b-dd8190739297", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:df4259c9-2946-5d49-b95d-63c0b78614e5", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e9ae497a-1836-5aa8-9f5f-c21588d6fa9e", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b3802ed0-f508-55b0-bce0-1e924e7c3252", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c3400be9-54e3-54c4-bc4b-6a0cbdc78076", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cfbe7e3e-bf67-5ea0-a4eb-dc817443ca3c", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c283a503-6bce-5391-a15a-0601f69c16c5", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0458bf99-4d7f-58f0-b599-005a0956e0e2", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:563e9801-9b4a-57ec-9966-7151433c57c3", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4effe4d8-f9c1-5c87-989a-88c34c0b0a81", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dbfc0adb-9f93-5da7-b2a0-d8235960bf7f", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:93554785-8448-51b7-93b9-d3d79571fdd4", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4e846926-bf81-5867-928e-aa35b9ef424b", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1ea42953-5ec3-5034-bd28-6dd1fe16d49b", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:73d0f140-5054-59c9-b50f-073090d14d55", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6da98d18-2b6e-5431-a6a5-ccb08af1c596", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-rs-sse-tomcat 3.5.11-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cfa4d31f-59c3-5356-a7da-57775b54d6fc", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9650480c-cd4e-58b8-aca7-a06d00e6c92d", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.systests:cxf-systests-rs-sse-tomcat 3.5.11-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:24e170cc-01b7-552a-a902-9b56f997bfc0", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0683737f-2b5c-552b-80c2-69348f0a6cf4", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-rs-sse-tomcat 3.5.11-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a483afe9-311b-5340-a532-091cdc5a5b38", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:561fd20e-d034-5b76-a1e8-f1cd2c5aa6cb", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.1" } ] }