{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:78df9914-9621-5e19-bc96-e54bcc8d6dda", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.1", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-spring-boot", "version": "3.5.11-tuxcare.1", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:be327225-1aaa-53d9-8204-e06c4ff1891d", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0d779fb9-a8df-5a44-acd3-bbe0d27fa595", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a773283f-ff0a-5d71-a7f1-8820a7da50ef", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:92952985-1a1d-5088-b166-e6ca38cc494f", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:60028645-96a6-5aec-bb82-ae8457a7914e", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:89f8a26b-e45f-507e-a945-8effc146f8c0", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9d66bd26-5eee-5b59-b9b7-f2630dc63af9", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:63d13506-bcbc-571c-b304-87d24bf70c29", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2f460a09-5ccb-51b8-a876-e99b2520bf72", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a933e858-f6ce-5dd5-8897-b5d6f936020b", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9e0f8019-5574-531f-b449-655fbc914892", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:434e341f-0605-5b2c-8add-60c93e40721e", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f11a62e8-81e2-5bb5-8471-bda86fba2ece", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:257a4f70-309d-5b8c-9c8a-c30d56944ce9", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6c769693-b1ef-5f1d-96b6-a8cf0fbc81fc", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3d1172e2-0663-50d3-b411-4c143b5c3abe", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:66f4f5de-a25c-53c3-98b7-b6853a2df212", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1ae928a8-5200-5a77-8940-b87eb9d9e0cb", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:94ee3bd3-5302-5226-8388-60357b452548", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:91c4b5d3-e55a-5957-81ab-3ff4bf9cecec", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:43210d9a-6fb0-5e3d-aa71-f963e1a6f9f9", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7b035f24-7dc4-5ecc-af70-b797b1f6dbf7", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c3e71e56-9950-5064-8506-487d46c051bc", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e12a552d-0f3f-50ba-ab6a-484e5d72f7dc", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9edde09e-c22b-5bfa-b9c4-6049fe721981", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:917c6294-84d0-5258-8f5c-46d00818165c", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-spring-boot 3.5.11-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:302b645b-2039-558a-8027-c35f5e6f9efb", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:84cf8e6e-da9f-558a-8b6f-cd2acc149ab0", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.systests:cxf-systests-spring-boot 3.5.11-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:086f163b-3da1-5cdb-a82e-661a5a062507", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6d4791b1-db1b-53d5-9662-edce335e41a4", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-spring-boot 3.5.11-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b496bb7a-1112-52cd-96e9-f58baf518493", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:262444a2-eda5-5a4c-b4a6-ade452bfca2a", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.1" } ] }