{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:05f9f725-7a14-5c52-aa64-c5f9e7bea019", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.3", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-rs-sse", "version": "3.5.11-tuxcare.3", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:be3fbd44-e56a-5544-aa4c-e44ab37aaa3c", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:67cdf2ca-4cc5-5579-a503-b71eaa5bd141", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a9a2f641-864d-5c91-89b2-afb13763d1b4", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a21894a2-3137-56f4-a7c3-f5dd293a6e2c", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:296b63a3-ce4b-5fba-92dc-e9946576b582", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c9a5ba4d-c2b4-5097-8048-982a12a550f4", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d31ab808-ade3-5a94-b721-e809fa33cd33", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:870d9897-ea92-5092-877a-c000a81189a3", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f052d69a-7a88-582f-a8bc-7bf4cdee20b4", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bd51c8fe-1646-50cf-9bc3-2922fda0f908", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:104236fb-7de6-5715-9d2d-c6d86431a155", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4f418fa3-3350-5589-bcc1-9eab2de98d1a", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:aae4b3b4-c985-5a71-a514-3fa085583c53", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:50eae073-0b48-5d16-9a67-efd16b32b7fb", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ee2f474e-8a14-5461-8421-966f63220832", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fcc93466-d373-576c-858e-9cb732074922", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:095c2dc3-7f5b-587f-a428-94bb2c99355f", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0bd8b8e9-6b26-5ca8-8916-7b22b3dd1507", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0aa5a8a9-1b4a-5325-b6af-f826aef808ee", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b6d9b366-ec30-5704-b00e-6dd055f93408", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:79e3f0ab-da7a-5ecf-a1d9-a6009e6cd926", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fea2d62b-4b5f-5e53-9d22-d6ebf76f352b", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f096e639-60ce-533f-aa49-f1b91f2cb099", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c0975f8c-4fba-558d-9866-6fa280cedf5e", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fff4bdf8-d1fa-5b8f-963e-4ab4d0b9f529", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8e452288-02ac-5a4a-b4eb-d0d4e5c5b99c", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-rs-sse 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7046fef6-f2c1-55bd-9ad7-f0b25cdefd82", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7535f4a7-65ca-59fd-87a0-d27303d64c31", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.systests:cxf-systests-rs-sse 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:976d7d4f-6b2b-50c8-bcd7-6353c77fe728", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3f458b41-cec5-5011-86d4-64e3b41956f1", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-rs-sse 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:59e77cbf-ed4a-5ea0-9548-d3a0b924db4d", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b352c214-30b1-5304-9ca6-27a244dfc36e", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.3" } ] }