{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:8386ea1b-845e-5e30-9812-451aa34ad144", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.9-tuxcare.3", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-rs-sse-tomcat", "version": "3.5.9-tuxcare.3", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.9-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:d4fd3e6d-33f4-55ce-bf7a-c1c1a540b3b0", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a2d27516-d419-54a8-a9a3-1c8097f71165", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:75bc613e-8c76-50ec-b511-8ee4ad335a65", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e61f6238-3522-51e8-b798-1e454662a6b6", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f81181ff-4b83-5980-bd5f-3eb2382e8c35", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:587f2a47-5855-5d69-ad99-558fac6434c7", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c134f479-652b-5b95-bab4-40fa1b9b03a9", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:93c0a395-ca3b-512c-90ed-c10d70efb3c7", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ebd6b26d-4d5e-59f3-a5cf-7f40f9231468", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:39d1c768-35f5-5f83-a41e-c8393997b680", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:79b8e9e7-4922-53c4-9c83-cc67734676a4", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5c3d5657-a5ab-552a-ab5d-3fbb03c0b048", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f53d12b2-8e1e-545f-8d2e-fc626daf57fd", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ac06662e-4e31-5a24-9d7a-bb2928c4f2d2", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ba4e619d-2cff-51e6-a712-3aa8d238b40e", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7b8cdc2d-ec5c-5e71-b43a-a266ecd55927", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:07176a9a-7450-51f4-b9f5-2445f816d7ff", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf.systests:cxf-systests-rs-sse-tomcat 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9144cff0-672f-5481-ac71-fb385c04c6a0", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5b691358-0aca-5d03-8700-4ec69eb0d05e", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:146601d5-6bae-5c57-9f32-014cf3338189", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4117afc4-dcb3-5559-88fb-8226fa0ad3f9", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7d01cfdd-99e5-5785-9074-d15ad0a3695d", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:73f926ec-48db-57c8-b080-cd4bfac77e4e", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:378fb0aa-5c8a-5c78-b5cf-1ae7aade6561", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:760ffcb6-4207-5ee1-a5a3-958047d5832f", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b7687506-17bb-5aff-b942-8b499b95d4bb", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-rs-sse-tomcat 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:de7ab99f-c67f-500b-a71d-df9f79b47f38", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b9a7ba5e-f268-5ca1-8b01-6d15665575d3", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c00d590e-412d-5a04-b877-2a0a82b88f31", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6a94dc00-a655-5d9e-95be-07b705e6908d", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-rs-sse-tomcat 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c5045947-1b0e-54da-b06d-b68a434eb7a1", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0ecd5d25-b5de-5b57-af00-f0677a467c2f", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5dd3f17c-b764-5205-862c-a2326da72d96", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:50fd9983-12c4-5481-a912-12efd50aa6a2", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse-tomcat." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.9-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-tomcat@3.5.9-tuxcare.3" } ] }