{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:ba07be49-e146-535a-acdc-ffd168513cc3", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.5", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-rs-sse-tomcat", "version": "3.5.11-tuxcare.5", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.5" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:6d0baa42-b25e-54b3-85c3-1bcbebff3911", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:e4f5ef28-ff8c-5dab-a7ba-3da662f11d41", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:6cc2f4b4-4af5-5447-a930-ef7f25c5646e", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:4812b13a-5583-52a4-8e2d-eb16a76fbba2", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:a1b424c4-927c-5119-ad8c-8a78bea4384b", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:8cacf75c-1a3f-5eeb-b9b5-9a19e21d6089", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:066b0c5c-3f1a-5088-9cd1-5347d0512abc", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:1c6bd8c3-46a0-5783-9e11-c15bc313d29e", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:ef8d07ec-6917-5630-b311-711444c4b8b5", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:103160f6-4198-57a7-a909-5d2ce367e922", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:75cb4149-6ce2-556f-a926-96d2463d8088", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:7685114c-1344-5204-8f0c-17c323d28617", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:88299cbe-b95e-5fc2-a70c-a900db71a65c", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:8ec8c8f5-6ea1-5cac-9f5c-a26cd1ce194a", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:8d79a426-f8d2-57e1-ac97-ab9f07a28559", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:e86105bd-559e-57a1-b30d-862fc3165e41", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:d164bafa-5aae-56c0-b593-1540b6dc6dea", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:2b6bca19-ef98-58ab-b935-7f98411cd717", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:fbd58465-f972-5904-b237-7acf061c5ca6", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:07c6f955-d5ab-525a-a886-d3c4ce4e3f8f", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:6aae692a-4982-51f8-ae92-67c4d2bce561", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:1ccc984b-618a-5b73-97fb-2b6d98d1ca0b", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:86ba0db2-17ae-5af8-af62-553953da5058", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:086f8f33-28af-562f-b343-f3a11561e851", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:1b1847e3-ca74-5caf-a19e-733db5557e68", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:8be76fa2-566e-57ac-bc3c-99bd3e26f7a9", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-rs-sse-tomcat 3.5.11-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:ad196ca5-df23-5d43-90b6-38d8fd211d49", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:b4234caf-daa1-541d-a629-f665a82fb310", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.systests:cxf-systests-rs-sse-tomcat 3.5.11-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:fef0f000-f97f-51f3-a44d-65ac15431388", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:e3529699-83f7-5bfd-978e-7431cdcc0e72", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-rs-sse-tomcat 3.5.11-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:188067f3-7957-5da0-8f91-fd627d9a3427", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:32acd0d9-4433-56b2-9c14-d2ee7485223d", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.5" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.11-tuxcare.5" } ] }