{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:4a27915a-9b81-560e-98a7-eebd11c64536", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.2", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-transport-undertow", "version": "3.5.9-tuxcare.2", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:92806adb-84e9-5cbe-bf05-f9a769b26489", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2339d52f-ef51-5e70-92f0-645995807aa4", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f10be44f-ddc7-544a-8ccd-5b58f88410ca", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5c558aab-6d9e-503d-98aa-6a00bf0b496e", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:908152d2-1bd8-5e6d-81c1-31724372bc5c", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:76c7b7d1-95f3-5ccf-beca-d4a4faa8f518", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9bf83f1f-de80-5040-b65a-76ff7bec324d", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:55ebb593-3055-582a-b7d8-017f4e43c96e", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:431a7d33-79b4-5b5c-8187-9c0575aa5bae", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8b463a89-e629-5201-b104-bb707b3749fd", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1beca83f-6921-5d41-919c-227339bcddc8", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bf43bd87-1723-5159-9209-b22d14e96ce8", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:514c8f34-55ab-5595-a2aa-bb26b18ebb95", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3e7e352c-825d-570e-8154-641b26458540", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e3641753-157e-5074-88f5-a34d6213b8fe", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6429be0d-1b50-54b7-86b6-3f7e1c11b6f3", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:840108e5-52b0-5c5b-98c3-6f151e7c3553", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf.systests:cxf-systests-transport-undertow 3.5.9-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:08defeb9-bf8d-5141-a86d-3e0e2f9c851f", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0176291f-307c-5020-8e06-d4abb177cada", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6e385b03-0d22-5405-82df-f52877902fb3", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d13b1064-ab1d-59b0-9d29-c1b33ad3b612", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f2fbb4b1-268c-58ba-8440-0ae25c75a0f6", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ada0d43b-e6f0-5b36-a5e4-a9e0f82cad66", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:99386767-c65c-5309-86e1-1764473f62dd", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f4b8c782-21fd-57dd-b43d-cc0fc6ccd6bb", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7d9bf7e6-e3ea-5d58-b293-549d5acc0604", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-transport-undertow 3.5.9-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0dc6d847-a485-5188-b6a6-026dd1073f22", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fedb9673-fa74-5fbf-aa1d-04facd202c15", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:eb6b5afc-2965-5891-a507-95940672c161", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:dfcc179f-812d-530e-97a9-7f64d8885040", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-transport-undertow 3.5.9-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fec46178-1414-5218-886f-15b099b5ad5f", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d5537b9e-4cac-5a6d-9ff7-5c49cd23f9a1", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a1ad112a-ddbf-5e1d-9e59-b266d4c59423", "id": "CVE-2025-48795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-48795 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fe5226a9-5adc-52a0-b446-c5bfdfa56ad7", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.2" } ] }