{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:1890a37a-ba66-5296-a973-2c9d97a64aa5", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.3", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-transport-undertow", "version": "3.5.9-tuxcare.3", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:120d3e6d-a0bb-51e6-bcf2-9c12d025246f", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b54df2a7-499f-58c1-99a2-ad893f2a7e64", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:09a3974d-53d2-513a-8069-e08098f0c275", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1777b408-1501-53c8-8186-be28095233bd", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:49e78d7c-da34-573e-93b3-0ca9755f784c", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:92958c0a-486e-5a9a-968a-4ef6bd81b7fa", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e6fe2879-5c21-5284-8b80-3debde1e0473", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:acc39012-b052-53ac-9f1a-c68c5ca9b88f", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1c6e33ca-a654-54f6-8a98-0154d16066c6", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7eb3531f-9f62-5a22-b384-1cd8a1efb754", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c1c6d036-bc0d-59c7-8657-5c9f47669186", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5230b745-93b6-5d02-9881-ea54b6a99577", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9c899c14-b43c-554b-9a62-7311a7211f73", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b47d37e0-436e-543a-9b6b-fe1c51a9df67", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f5c0ab61-c84d-5add-b0e5-dac40c57b79a", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c4a17f1d-457e-5fef-98e7-20cc9e5610b1", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:df7fec48-e380-565e-a1c1-e300cf84ba5d", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf.systests:cxf-systests-transport-undertow 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:28de770b-b0fd-579e-9012-d950b498ad35", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:613d3368-c053-59fa-94bb-e1556293adee", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:10ae7728-dbcb-501e-b05b-ced5bbce603f", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:629f864e-a7de-51c1-9715-56332f9bbd8c", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bf68265d-a6f3-576f-90d9-2c94ff3019c2", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ee19d4f0-6151-5640-83ab-ced2f405cee1", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c7c4ba68-f32b-5c7e-85bc-6aa23ae3560c", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a244b727-d030-509d-884d-f0d636194a07", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7bcdf94a-72a6-5474-8ecb-1b9470213ad1", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-transport-undertow 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9450ef18-821d-5a5b-964f-e3324839d071", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:85c778d0-41fd-5aaf-bacd-6278f4641315", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a028d7d7-9812-58ca-a5dc-e89582376f78", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:807ca938-efb9-58d7-9916-a611ffed4eca", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-transport-undertow 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c0919eef-b28f-5878-b44d-ff978c2f752e", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:27d99e96-078e-5a9e-a883-3b208d83c32f", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a11243a0-5fac-52a0-aefc-062f162a28e0", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8e70e96c-4777-5c42-93e2-967b7e4dd5cb", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9-tuxcare.3" } ] }