{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:a36e57f3-29da-5c9e-ba1c-e6083798213d", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.4", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-spring-boot", "version": "3.5.11-tuxcare.4", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:83e0c8fc-7bb5-563c-a46b-bda002aabec5", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b7028858-ada4-5bbc-a11d-7dfa82ab8092", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8cdcb57d-cb21-5ce4-be65-804097497275", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:60e6ddfa-2b83-5b14-a7c9-8cd34a993fb9", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d94166c7-ab1f-5145-a2b0-ff2bf8e85078", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d06f892a-f198-55b5-b39e-ee7a2d26f00f", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:04463ff9-cd47-5386-b5b9-a6802983e526", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a2b10664-a8b8-5a02-a86e-e7c24a258aba", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:59a27de2-579d-5455-a4cb-ee0caa99e7ac", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a896be68-9558-5ab3-bba2-af8924e691d4", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c8544cbd-17ea-5ac8-b3ee-58e007acf029", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:9a4ae274-bb0f-54ac-861c-b6b7fc7f05d5", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:1748d304-8df2-516a-bb86-817acf10cd2c", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:11b51374-a4ca-5f75-a3e8-c50a7e868dee", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0c93b2fd-d803-51ff-b222-45541a7f0131", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:559cbc0b-f390-5bd1-ab30-44aec631dfb0", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ea0d4e2c-a484-532b-a00e-7597b1bb70fb", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b79140c8-430f-56ea-82e8-8e190e832212", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:cab2134b-23c9-596b-938b-34305a72316f", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c932943a-d8a5-5d5d-90a7-d023c2cf0557", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8f0a8ee9-8a32-5fbe-9cd9-47ef34637684", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a4d62be7-8d54-5d1e-a919-ad1c07e67496", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:6fda741a-bcd4-5faa-9b62-e209179665ca", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:9170d094-8307-566b-ad5e-fada0fd44bcb", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:31bf685d-7a09-55ff-9aa0-e2349f6bb98f", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:98c69e02-00ac-5cb4-98a5-7b2424020f6e", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-spring-boot 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:76a40273-ffd0-506b-b581-b39eb6e658b0", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c3e4ad09-4d51-57a1-a11c-a4c75bb0d2a6", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.systests:cxf-systests-spring-boot 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:252e7506-3d0b-577f-a943-3f90de820c3d", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:61d8257c-75aa-51b6-a29a-3a498685b632", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-spring-boot 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0d3d0bb8-9789-59c3-967c-7c7be8ffc217", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0238b5c2-9790-5acd-8384-b673117d158e", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.11-tuxcare.4" } ] }