{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:836d0f86-30b4-5793-8ce9-bb32a74401db", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.9-tuxcare.3", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-spring-boot", "version": "3.5.9-tuxcare.3", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.9-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:ebe622cb-c3c4-5497-b84a-75dead1aa364", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8eaa15c9-848e-563b-93b5-d2ce8cf5c159", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:864ee8e7-37b4-52ee-b679-da18db260eb4", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4512cd39-7270-5c89-a8f0-a4a367ba704c", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:10cc0bb4-f8bf-5895-a138-2692ff0f49a0", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3e95cde3-eb6e-5122-b0fc-0998b9fcfca3", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:41874eae-235d-53c9-b034-a9606abe6e32", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8f6336b0-59ea-5a91-b873-710b40aa5a33", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c5fece30-4745-5dba-8626-fe907dcf8e75", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e0e8571c-6607-5923-988c-7877af115e11", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6c1bb3d4-b8df-5d3b-8b4b-c58cdda30c3e", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ccd51a2a-26ae-58bb-a782-2f575f066949", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:35a0fa9f-b1f1-5e75-a266-8b197e89f5a7", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:afc8ae18-d959-595a-9dbb-dd2cf62683c2", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4048efea-3247-5b9e-ad32-890e31241976", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b421073f-2c73-52b5-a61a-e1fbae67feef", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d615eb95-4ad9-5854-91cb-8315abc16656", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf.systests:cxf-systests-spring-boot 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:881398ce-aa8d-5ccd-82f3-6233610a7858", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e3de863b-925d-5409-8d69-2c321b082758", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:96fb22b3-e25f-505f-afa2-6e23d9980599", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:814d5228-2980-598c-a4df-e0a16f1862cf", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:19ef6f80-9b93-53b0-a617-1113d8b39cd3", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6339715e-2bfa-542c-91de-e7139bf3f091", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6da063de-75b6-5582-9935-68cc0d197d04", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e0bfe940-d243-5048-a12c-6f40701704f9", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:321d3ced-551b-5cca-ab34-ad85f65cd859", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-spring-boot 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f01f9482-1814-5b7b-ad98-b10cc41d9f7f", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3865390f-81f0-549d-b154-3f3a8e438a76", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:af5e4e63-a8ce-537a-9d6e-30e94e7eb96e", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:69e68bef-445e-5394-a312-2a42cfa4c32f", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-spring-boot 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f6b9b8ae-1681-51c6-ae2a-d33b318e7ca4", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8ee39540-79a1-5dd4-a4c0-20e0fb8349dc", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5d00b581-4f67-5388-a794-c8bcc149b5ce", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:eb877906-461d-5510-9d2a-3ffcd16729ff", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.9-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-spring-boot@3.5.9-tuxcare.3" } ] }