{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:4c77de41-b5b5-5d06-9893-5ed5b4c8996e", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transports@3.5.9-tuxcare.2", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-transports", "version": "3.5.9-tuxcare.2", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-transports@3.5.9-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:07df5ae1-cace-50f3-a8b5-08cf24fec794", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transports." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transports@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:03ffcb0e-9bca-512d-bdd7-44d9345b8482", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transports." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transports@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:68f15256-f12c-515d-9752-d5d429ea117c", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transports." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transports@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:859bbe21-0675-5155-9887-cf3101a94e67", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transports." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transports@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c427243a-12d9-5deb-b65c-bb484fde9e64", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transports." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transports@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4f61118e-082a-5522-a699-6facdf48739b", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transports." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transports@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f4ee7749-26e3-5bc6-b48d-750e3a565349", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transports." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transports@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1fb31d84-74f6-5193-bf88-75f361089e06", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transports." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transports@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7abd7243-1622-5a6b-bb22-b60770791b4c", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transports." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transports@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fa30141d-255c-5882-bdce-2b79a8418494", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transports." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transports@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:193cc275-fbd5-56d0-8542-01a8e3246f1e", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transports." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transports@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:505329d8-b0f1-545e-8cfa-f330e2a030db", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transports." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transports@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:516b10bd-739a-5ac4-82ad-121eba27b357", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transports." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transports@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4d82abde-fa51-5a4b-b32e-408a900aae72", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transports." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transports@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6eb6639b-3af0-55ef-9230-eeb75c6f6d80", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transports." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transports@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:04e33a83-6608-5484-8096-e6fe89c72318", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transports." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transports@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:89cf7826-ecd0-5662-a191-80916374958b", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf.systests:cxf-systests-transports 3.5.9-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transports@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7271e521-035e-5575-8a54-940164d2453a", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transports." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transports@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e019bfb1-9d55-5a0f-a1c9-327785e54f19", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transports." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transports@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7eba81d3-16c1-5390-b9aa-ff30a7b8f217", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transports." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transports@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4098ab5c-67c6-5a76-993f-992731be642c", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transports." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transports@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b348cfc4-e216-5f39-9f70-a2bba5b92a98", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transports." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transports@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8c1e4186-17e3-5c64-81b4-2b3b12928198", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transports." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transports@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:37f72b44-233f-5a4f-b213-4701e1630e0d", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transports." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transports@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6253fb29-79a8-561c-b544-31c0eec9d0ae", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transports." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transports@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:69be4f64-7f36-5445-8935-3d5107cbb64b", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-transports 3.5.9-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transports@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:95496634-63a6-5901-9811-37361a68f197", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transports." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transports@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:111a2cc0-5d8f-59dd-a8bf-b6c237b3e1b0", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transports." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transports@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:de0dcb6e-db72-5b99-aa13-c179daeb17b0", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transports." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transports@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0c403395-0043-52ff-95a6-7421ef4c3445", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-transports 3.5.9-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transports@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:26f9ebfe-02c2-5d96-b03a-afe95703a873", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transports." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transports@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3158c5a6-2286-5d89-9583-4cc29558d427", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transports." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transports@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:36ae1395-f6d5-5e65-8229-77d26bc199f9", "id": "CVE-2025-48795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-48795 affects version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transports." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transports@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:78571860-6c6b-56a7-b359-476a74cd9e12", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.2 of org.apache.cxf.systests:cxf-systests-transports." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transports@3.5.9-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-transports@3.5.9-tuxcare.2" } ] }