{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:0a258caf-ad59-5dbc-b257-4ca2df6e1b07", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.9.tuxcare.1", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-transport-netty", "version": "3.5.9.tuxcare.1", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.9.tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:11328d37-3f2d-5e6a-87e8-6d6f52dce736", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-transport-netty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:28479dae-6cb0-5da8-87cb-362fb2c03455", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-transport-netty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f01524a4-2384-59d6-8ea9-a4e29d11d7ec", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-transport-netty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b06319c1-65ed-5425-ba35-6129ed338cd1", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-transport-netty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5b6d9e24-488a-5ad8-942f-88ab13776e25", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-transport-netty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:803e237c-6d2d-5645-bc63-b4e75bea9e2f", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-transport-netty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:87fd2cd9-a37b-54f7-944a-861c4aa5fa22", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-transport-netty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0885d2db-c1c8-501e-b3eb-440029402cf3", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-transport-netty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4b127d81-8e75-5943-838a-abcad23288f6", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-transport-netty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:982366bc-b362-58b1-b359-d3b73d04d715", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-transport-netty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f85c4270-32bb-520a-b9a2-00eba2dc6197", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-transport-netty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d1d01bf7-780e-5f51-bc0a-9289696ff217", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-transport-netty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b5ce594b-9141-5325-a858-dedf992f03cd", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-transport-netty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:eee56705-8282-50d9-86c2-d0e4c5358e72", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-transport-netty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0f809b0b-3124-5672-b502-60da34cc0fd2", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-transport-netty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:853f2297-9544-53b5-88e4-04b789666211", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-transport-netty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d7067a96-4a9c-5652-bb17-be8af6b35899", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf.systests:cxf-systests-transport-netty 3.5.9.tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c0573fd0-735a-5b56-8f30-d0f6479aec5c", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-transport-netty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9afcde97-8793-5263-8ee9-5a9307feeaf6", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-transport-netty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:83b4fda1-8787-5179-945b-a131e8c8e91a", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-transport-netty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d66936f0-b1cb-5c5c-a0cd-eca2a3e4f7bf", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-transport-netty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:be227517-2323-5a25-a19d-97d2c1f437ce", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-transport-netty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:49d2ee4f-b041-5591-b37a-3ab2646b0896", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-transport-netty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dfd7fb30-866d-58e1-9d00-d6f15602873c", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-transport-netty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:89535f8f-f6da-5741-bcbc-dc3cae186808", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-transport-netty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2ac9cea3-208b-5144-9ae7-9a0ccb1c8608", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-transport-netty 3.5.9.tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1ef35e82-b05b-59b4-91d2-51d42dfc87d3", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-transport-netty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0b69b4d0-4f4e-5d74-b619-50ac06c52412", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-transport-netty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3f99013d-a004-5a48-b41e-673953ddd667", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-transport-netty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fdf4bcf9-9a5b-55c7-88f5-63caf688676c", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-transport-netty 3.5.9.tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bc0920d4-f418-5598-8096-e213a51a785d", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-transport-netty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5f67f376-3218-5647-9268-07a6cc0a46c0", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-transport-netty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d1289fe3-8085-5779-9a1a-339c7f6d3b7b", "id": "CVE-2025-48795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-48795 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-transport-netty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3f2f5525-5174-597f-831e-141aa4ad33c5", "id": "CVE-2025-48913", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-48913 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-transport-netty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.9.tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-netty@3.5.9.tuxcare.1" } ] }