{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:8c8acd95-2cd0-53ab-bfb3-69362c902b97", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.11-tuxcare.2", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-transport-netty", "version": "3.5.11-tuxcare.2", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.11-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:789eba6c-fb9b-5df7-9ec8-62d75c095739", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-netty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:067522a4-c9c3-563d-86ed-daab7957faf6", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-netty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c949a44c-f2b8-5e1f-84bd-0eac5a23218a", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-netty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d7018bfd-aefb-541e-99f5-59d0139b7e33", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-netty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2d7e7ccc-ddb4-5dec-8203-45f6f869e570", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-netty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6b7ec54a-e5e1-568c-8d0d-29f6ca5b752d", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-netty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:76b40074-cb65-5cd6-a06e-320d3e47ec3d", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-netty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fe9192c6-84f6-5d45-9cd7-99570314b87e", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-netty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6ae0d98e-0f12-5cfd-ae6d-e11e5fb429b2", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-netty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a08fe177-20b2-56eb-a555-0e89f7ff4d82", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-netty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:065ecf1e-e53c-55d6-a17c-d2edd900217a", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-netty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ef1064a0-39ee-586f-8ee0-03d348957a21", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-netty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5823acb4-0d24-5cdc-94e1-0115c3eca96a", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-netty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fc2f9acd-09a2-5598-ad68-c92cb7c5a314", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-netty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:38c72f26-2a23-5b3c-b06e-721e2871c766", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-netty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1ecea15a-ea57-529d-a773-e68363cd30ab", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-netty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c9ba59d3-87e6-5dde-9166-11307a20c9e2", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-netty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cc72bb5d-da1f-52eb-9d2d-77ea953e9b62", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-netty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a44a92ef-adda-5018-ab48-e41e027cda9e", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-netty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5c0f6820-8815-59a1-bcb5-2f09270e77e1", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-netty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a1f444ad-f75b-5b7d-8000-8eebfe33f850", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-netty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:23f1ebb6-5e9f-5010-ac3a-717fc424259f", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-netty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cc6a45d4-c635-5139-b79d-0758d836f25e", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-netty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d19574aa-2606-5dd5-9769-64d0273c5fb2", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-netty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:abdb789d-f82d-571a-8dff-9aa7edf93041", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-netty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:21b24752-1bed-5d8f-85b3-669f90e4983a", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-transport-netty 3.5.11-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e1d254ea-abc4-5ec9-8935-4315a7ccc439", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-netty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4a817b07-a063-5266-a41d-39963ad8bd72", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.systests:cxf-systests-transport-netty 3.5.11-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fb7d09bd-f454-5b56-98d5-af1d24026157", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-netty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:59960009-f5f9-54dc-9215-f130cc48ee27", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-transport-netty 3.5.11-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:53d1c486-cceb-516c-9292-99bbb6624d6b", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-netty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e0a46c3c-659e-5800-a0a6-b8c0a2f21677", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-netty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.11-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.11-tuxcare.2" } ] }