{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:57a5c706-aeee-508f-9a51-ef3fb456455d", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.3", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-tracing", "version": "3.5.11-tuxcare.3", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:19015077-42fb-5fdd-b3da-fdd28854faa7", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c4a01afd-a417-5e6d-b6e4-7d8e0bdabbf3", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6239c27f-e1af-5833-ac86-f967abeb1507", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f2bf52a7-a97c-56d6-9501-23261da7db0e", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3737991b-599c-5b0c-90b3-455682970f26", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bfa4699f-3980-50f3-af1b-0fff2b53219e", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:83fe4cc2-adf2-57d9-aa81-b5093856ad66", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:196c3258-a68a-5f47-946a-3095aa0dc724", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5df1e950-9c3b-5690-8ca2-03aa1ec43f0d", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3f4cea02-6e5f-5884-a00d-976199ede060", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ba81beda-faa2-5115-ae3d-194561a86560", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3207291a-04d8-5745-8bca-7029dd2d12a7", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9df971d3-d517-577d-8976-c417ee81cf01", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:84ca9770-c348-5596-aef5-41e6204c8ddd", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7c6fd4f4-9668-5d84-bc81-a618a393baeb", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e06ec1f6-d127-5f89-8ee9-2a48dd2939de", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6ae60259-7ca2-5be4-b4ac-f44f728aecf4", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7e23807a-f3a5-5669-9bbe-bb1a00876a4a", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:83df9725-dc68-53f7-9a80-9731245d2b92", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:52955172-6cdb-5c28-bbcb-03241e2d41d5", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5d39dec0-2d1b-5855-938d-34acc30187bc", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e52e1828-a845-5d41-b54a-8baa5aad8f76", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b6e7c133-b48e-536c-addf-9abdbabcd7c4", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4ff3bc2d-b868-5eb7-a900-8a765c1d84c9", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3bdd67e3-9341-5635-b8e8-441af9523287", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:07ba2aa7-d0fb-52a2-8d4e-ce171e23d425", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-tracing 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5873516e-9725-517e-91a2-5bfafedaec87", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e7b1e473-247c-5837-8349-34a42282d011", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.systests:cxf-systests-tracing 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:27ee92f9-2b10-5cd5-8d42-b248b7383754", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f8795b9b-7b6d-55da-879f-2b93fadda5af", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-tracing 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:489cb14f-075b-5289-b42a-ee1732a99c5a", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:047ff9dd-20a1-5a2e-9134-051650b142a4", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.3 of org.apache.cxf.systests:cxf-systests-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.3" } ] }