{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:993919cc-708e-58f7-a70d-fb6f4990884c", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.2", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-transport-hc5", "version": "3.5.9-tuxcare.2", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:8b7ad4ec-796d-51fb-9810-71f347a98908", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:72122f53-87ec-5c73-be14-023ca6543815", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4fe78d24-503a-58a0-842f-11246d8286fb", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a5696112-1edd-5dff-af59-e8438a4df121", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d1187f16-5084-5963-97b2-8f051d306a5b", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2b6a4e09-d709-5016-acd0-79b29bf73347", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:39f92698-0124-5718-b8ce-ace40f7b25ec", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4275c9cc-81db-5651-afc1-4843b72dec84", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:dfcf932c-dd55-54c1-a805-c8f2f03da12a", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:37b89970-c9ce-5f1a-83be-c42d4d5e2980", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:865f35ee-9081-5f10-a49f-492aebda4d0e", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:079f7c6c-c480-593b-b4df-72cdc17a41e3", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:539b1c10-2cf7-5fd0-962c-bbd88c53208e", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a1568333-91ca-5dde-81fc-cfc8ec9799aa", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a94bbf15-be17-5ea6-9007-fd5112ef8738", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6eb1bae1-c742-5c15-bedf-fc823d59dd3e", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f72faa8f-ca82-5e50-87bb-4a7b62b1dc63", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf.systests:cxf-systests-transport-hc5 3.5.9-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:884af716-0a9f-56af-abb5-9be06e6fb934", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:691a7a17-0e32-5cd9-ba71-d8db0bbc588f", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ce4cdd6b-f0e3-51c1-afb0-6e687f6ad2b8", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:77edeffd-5ded-58c9-a22d-61eb107e0c75", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b6ce1c9b-2ea0-5d30-9dd5-877d23984449", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a9c13039-44f1-5859-a488-0a3f5c2fb9b0", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ba22ed92-8db4-593c-a799-d660a97e9f20", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d88f1cca-b63e-56f5-9405-39119a1de677", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3aae7254-31fe-52c0-b16e-8b040dc39f6e", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-transport-hc5 3.5.9-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6a7718cb-9cdc-5980-984e-86b60d47e489", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:29635d24-13a1-5c05-a4ca-85716844c5c2", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:afe4d393-2349-5812-9bb7-aaff244ef755", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:64d5bb6d-62ae-559c-81a0-81742048dcd5", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-transport-hc5 3.5.9-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1d4045ac-9705-534f-b6fc-648c308e9652", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c760ba45-6cd3-5e18-bc56-e4c7e472c321", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3e1757a2-5b8e-556f-9d1b-785852a7ad96", "id": "CVE-2025-48795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-48795 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:55e1a16d-9de6-54ac-bb27-dc29cc5a8691", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.2" } ] }