{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:20501091-28ec-5580-9485-d22fbfd9a46d", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.9-tuxcare.2", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-rs-sse", "version": "3.5.9-tuxcare.2", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.9-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:b4e2ede9-fe64-598b-b0a7-37fe4d500766", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8f21ee60-8897-56e6-b340-bebfc7910262", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bb74fba4-6bf3-5788-8ab7-8bbea47f1b1e", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8501bac5-7f2a-5343-9366-f002ea3d1132", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7e3ea00c-e825-5b6f-add2-475e002851b3", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:14841c8b-25a4-5c95-a06a-ca531224f4a2", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5e2a013c-c636-5402-a89d-5ed793e4da78", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:195d232d-6e60-58ea-8c01-bd431fa50a68", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ef0aef75-ad37-5748-b29d-432f67192e2b", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:355af87f-b470-54c9-807a-b4a3d2ed00e7", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0fd40c2e-4919-5dcb-a17a-ad6a167915d5", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:21ea36c4-362f-5d21-9f8a-b6064c70718c", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ace43367-4e1c-518d-8895-f397f434e43d", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e06bc7d8-3942-52f7-a0bc-a7c994913b0e", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1d53a14a-182f-59fa-8e69-8c13f357dc5a", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:42b326b3-176d-5bbf-9936-2f8dc48a92dd", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fc476e89-68f1-5e32-aa99-5b5d1ddb47a1", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf.systests:cxf-systests-rs-sse 3.5.9-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a9684367-a53d-5981-8e71-3e7373465a50", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0a61700b-e83a-5e67-9010-2d5983838b1a", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0e3af247-52f0-5c85-8535-6cec5abf4454", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3397eccf-f51f-52bd-8ae3-149db2e128d7", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c553f6cc-9d5d-5c1e-8673-465575a0ad45", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:23faa8a7-644e-52f3-b889-7314b1923656", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fd9771ce-bcda-510d-a9a6-cc9cc0823911", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:965766ef-1760-57a8-b37b-ca8e114f96fe", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8cba10e8-631a-5d57-9e7b-50e3ac011150", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-rs-sse 3.5.9-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3b3eed27-091e-5255-bf40-5f23b8af7d0a", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f0931c66-7726-58af-a6b5-2a660b34302e", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0e3b5b61-5d25-564d-aff4-8d46560decce", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ce4ea817-ad3a-5ffd-b4a5-5d56e033c193", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-rs-sse 3.5.9-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:21d8a525-a886-5e36-a5de-be3edf3a8bce", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3c4029bf-9887-5ae9-972a-14bf7ddd8daf", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:691a668e-684f-59b1-ab16-16c95aff3b8f", "id": "CVE-2025-48795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-48795 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5fe2000d-c22e-5048-8b35-6b385782a128", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.9-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse@3.5.9-tuxcare.2" } ] }