{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:8b714f27-3f1d-5d51-9302-44882b92483f", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9.tuxcare.1", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-transport-undertow", "version": "3.5.9.tuxcare.1", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9.tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:42fc2f45-86a3-58a2-8bf9-58af555b7662", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6b4139cc-0cec-59c7-b393-883dd86f2ec1", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:61432f35-1318-5b31-8d50-009c52fbf1fb", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:79672b74-8304-528c-a931-0bb3bbb5c6b3", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a711bf5d-e4ac-56f0-99df-88e5d47353b2", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:78fe24e1-5815-54a4-8ee0-bff5062143fe", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4196d8a9-d9fa-5283-9d47-2ccb9399fd8f", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:60c2fdde-dca5-51e4-9e4e-f8e622ae6e02", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7f0388f5-9398-5a78-a334-d5c62d1294ee", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:658d711b-819f-5b71-9da7-9dbfd1e706c4", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:584832e0-989e-5bdb-b678-da41b30b5c03", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ab1a0677-9280-5d9a-8db5-77aa316332f9", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:75d7866c-4106-595a-ab9a-85c582709484", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:df640ec1-f1e7-596e-ae8c-e7a0607cf831", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e2019187-bd82-5d16-b013-6e25d082932b", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fa9a03e5-5c6d-5bee-b666-12efacbfa736", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:61730e63-79b4-50f4-8ab4-9a9cdf3fc741", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf.systests:cxf-systests-transport-undertow 3.5.9.tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f5cb347b-d020-5489-aa31-e1831f90a467", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5b8589bb-a296-5638-b930-1366e101ea1c", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e9bcf976-16b2-5586-8c2f-1cdadf37a874", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b3b4a9e9-5747-57af-b724-c8619dd5067a", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:aa9c56f6-619a-59fc-86f7-97880aac23d0", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b3bc91b4-d2da-56ef-88e3-3d0686e2b22a", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f6a36183-b9cc-5585-9c85-6bf7efac93d1", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c7c07421-7655-5855-8596-f32d936c50ad", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1b062c30-6895-5236-9206-83ce32c767fc", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-transport-undertow 3.5.9.tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:574e9fd3-270c-5631-a8f4-a0765eae6cfe", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bb97ea8f-8a52-5da8-a88c-19ee8e3ab77f", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:635cbc0d-e607-56d9-a871-74b8a8e6b73a", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:641abdf1-2f4b-5c4c-8b52-bdd5144e13f7", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-transport-undertow 3.5.9.tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a4df49aa-7de0-58c3-b712-e749b449dedc", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:48f84faf-49f8-5c06-ab13-731feb5a89b0", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:24c7d497-6e15-5703-a16b-a93c31382d17", "id": "CVE-2025-48795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-48795 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:61c64f46-f1f4-566e-9e95-e8ac8ae29cfc", "id": "CVE-2025-48913", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-48913 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-systests-transport-undertow." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9.tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transport-undertow@3.5.9.tuxcare.1" } ] }