{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:7a53d658-e290-5e22-8005-400dd5f1326a", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.4", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-rs-sse", "version": "3.5.11-tuxcare.4", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:4922f5f8-652c-528c-949f-9f073bd8fadd", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e94138ef-bff1-5952-9d55-a504f3c4a208", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:99b5107b-51eb-5a16-adcc-eed70288c80a", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:465af025-471e-51ba-864b-6eb2c94ec2a2", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:813cd3bb-8914-51e3-a96e-6611fe086192", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d007ee13-8bdf-542d-9185-1db13731dda9", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:633588ca-a015-500d-8434-bd91583c2b82", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:cec378fd-fe9d-53ff-a16f-29d49b642db9", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d63b3514-c9a6-59e4-9bcf-46055c6d0523", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:08107836-a4a5-5114-9f03-70f2dbcbd7f4", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d6c3adce-aaf9-576e-8fc1-4865e64d2000", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8e409209-8e57-598a-948f-05c3d50321fc", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ec011aa1-528c-5217-9cd9-679719fba63b", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f28c8202-54fe-58fa-b910-5f9437b2a669", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:397fbe12-e484-5cc8-8fcb-a787226274b3", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4f93fc2d-4865-5b98-9967-495a48aba78c", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:863244c6-0ba3-5ff0-9fa8-8bd2ed718e60", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:bdd48a40-f012-5f5b-bd73-6cc7da070d16", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:6c44ef6f-7ee1-543b-bd33-9ddbd0cbe853", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f1ddf334-16c9-545f-a32b-174ab42cce90", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:5dedb293-2ef3-5789-9e13-3ceb15480ed7", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:427fe418-4449-544d-a27f-ff4bf66929da", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e80fcca9-1dc1-51d6-b9cb-90bfd2ca0c29", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0c03d033-b957-562b-a9b8-18794ba3a301", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:cf9c7b3a-da13-5ecb-b99e-ed45f7be1eed", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:204fe0b2-8383-5683-b0a3-8dfcb6cbf203", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-rs-sse 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:630ecedf-d070-570e-8e0c-26408cd370c5", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4f0076f3-243b-5e69-bb42-79b0543fae1b", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.systests:cxf-systests-rs-sse 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:9113ec80-84c2-5016-8e7a-1e630611d469", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b67d52ef-c336-59f0-bf2d-692e46cdb19d", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-rs-sse 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:6fb532e7-e45e-5257-818b-a4b1ca1ae503", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:fc6410cf-3cd5-5695-96e1-bd4b495d264b", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.11-tuxcare.4" } ] }