{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:c4b5a428-ba06-59fc-b966-0cfd6e2f67b7", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.3", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-transport-hc5", "version": "3.5.9-tuxcare.3", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:90fa45d9-225c-5188-a912-eadc3af42362", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-transport-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:df02c268-3ea4-5d38-8f02-248782683de0", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-transport-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8d974e21-e2f4-5885-b0a4-cc77806db9b8", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-transport-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c20b0111-2843-5896-91d9-fb4ae0a7c36c", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-transport-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6a21b000-67a4-5a9e-9125-e07002239fec", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-transport-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:654b6ef0-cdea-58b3-99f6-41ce400d9439", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-transport-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:68f40403-a9f0-5ef2-b6d8-0f64f2ced78a", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-transport-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fea337f3-fe69-5c84-b92f-43069ee94cfa", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-transport-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2f5555da-1e1e-59f3-9986-28b3716199ad", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-transport-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f9591e2c-38f8-5708-89ae-1bc961744be5", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-transport-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7cf851a7-e8b5-5cc2-8022-4790c7fcab76", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-transport-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6c48c4cf-b7fa-5781-9475-f9eba87042d8", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-transport-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fb9acf09-3362-5150-8028-253cd8956675", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-transport-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4988381a-0187-5dab-a5a7-6b31530e2d67", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-transport-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3b49a9bb-b0fa-5882-b762-bfdc4397bdeb", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-transport-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a61318a2-c846-5d20-87e9-f01646cfe09c", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-transport-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:31ff2ec0-c0e2-5ad6-8a02-f3fabd51d17f", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf.systests:cxf-systests-transport-hc5 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:16426923-1c52-5a3e-b446-c5595831f097", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-transport-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:02681c5c-3a31-52af-9e93-ad713fb09be2", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-transport-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:039274b4-b38a-5993-88a2-607808c755ad", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-transport-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7b6dc4f0-d30f-58f8-8b73-f29e57190f16", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-transport-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:47793c07-c606-50a9-b5a2-f3822a9ce4be", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-transport-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:00b78009-8090-546a-a05b-5adec806ddde", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-transport-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f07fed0a-84c2-5086-a226-42241cf83ccb", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-transport-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d3009791-ae6c-53d2-8b82-4bd8f5ab4c24", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-transport-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2fddf28e-ecae-5cfe-aad5-787f1eedd8f4", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-transport-hc5 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:eaad23fd-bfc8-55ea-b757-a322a906c280", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-transport-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:20f63505-dd47-5f69-8f7e-9966c9d88ea6", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-transport-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0b2e5914-8d4d-5324-be18-217ecefbfd5d", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-transport-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:418d45bb-b514-5a93-b7a1-4df0df3d1ab2", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-transport-hc5 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ff9e70f5-367b-5748-8665-9353ff99750c", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-transport-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:74a63c13-0cfd-5735-893c-e95e4cd5ff8e", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-transport-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6500bc3f-8579-563a-be8e-5c37463a94be", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-transport-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f2176c9a-8a1d-5d4b-ab87-40448de64e62", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-transport-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-hc5@3.5.9-tuxcare.3" } ] }