{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:7dff6e1c-0f09-5956-afa5-b4ea201fec6e", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.4", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-rs-sse-tomcat", "version": "3.5.11-tuxcare.4", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:795c42f9-8db7-59a9-8225-19b34d0ce26f", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:001d73ee-c9cd-517b-8f0a-fbe6ffd3882c", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8d3f6b00-2dc7-5997-9474-5486890145f2", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:12309f2f-02e5-57e4-a6dc-38389eb3371e", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:5ab9d1de-41f8-5eb0-91bc-3815adf0ec32", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e3c9c8b6-5a22-50da-9873-e9ca5aef357e", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8adbbfbf-147e-538b-982d-21f613e0242d", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:214f96f8-93fe-5179-8e36-bbb4a1cd6760", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:383e46dd-025e-5d5c-8d1a-52fa904f7aba", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:27ed9314-8d67-5553-afa0-3bca749f1865", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d78fdfbc-8e44-51e7-a0e4-8518910d16d5", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7df05d05-95af-52ff-8b33-699b36caa215", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:22fc36b3-5b97-595a-a179-bde86ee68850", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0a31582c-8b15-5c2f-8a7a-2bcb259545a6", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a628d56a-43bd-5c35-8aff-25210d64ca14", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2fe3d26c-a753-54f2-bc76-4d88edab64bb", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:9d3d78bb-9f6c-5fb7-a416-0488574bfb05", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4eee44e8-a281-56e6-bd1b-9cf69b121a8a", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:cfe60567-086f-5ced-b03b-8e005b9899ef", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d1aa696d-4700-5165-87a2-ec30c7829b8d", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ce044fc0-f3b6-56f9-bd1f-063f1289f7af", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:84363c7a-7177-5cc7-9074-38a91b4f66aa", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f20afe84-3667-5b73-b663-0490d2fba7ec", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4258966b-2430-5f99-8c30-3227a2e5a635", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c2d00c4a-3a05-5858-991b-f543d0d4c4d1", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4036ecca-748b-5f54-a019-12060a2a2daf", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-rs-sse-tomcat 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:bf3a7bb5-7ea3-5862-be5f-7acc05f5651b", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8ccaa17e-af1d-58e8-afff-deb1a9ba9327", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.systests:cxf-systests-rs-sse-tomcat 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7f54cb35-43bb-52a3-9433-1b877fe508ee", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:20eb81f1-ec24-5d0d-bf32-f46e065c3520", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-rs-sse-tomcat 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c764613a-80c9-5329-9e0d-8645c2bf1b2d", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:6a82e24c-a02d-5d24-b7a7-4abdf4ab83c0", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.4" } ] }