{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:c278e636-cdd4-5e66-a13d-e69fce3ceb81", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.3", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-uncategorized", "version": "3.5.9-tuxcare.3", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:89a259b5-b01a-55d9-aaea-37cc3c6dd3e5", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-uncategorized." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f579a230-721b-5804-b640-8dbc2723c16c", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-uncategorized." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a0db9d4d-804b-584c-8bf6-ed5d8ceb9e7f", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-uncategorized." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:dc75132f-1a8e-5da0-84af-17a401d1c7b3", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-uncategorized." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f02bb309-0696-5aec-9edb-6d042c322758", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-uncategorized." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:07648bc0-5442-591e-805b-b5ffd7d33d19", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-uncategorized." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e9736370-25ce-564f-9cc7-cc089ad307ad", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-uncategorized." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2b32f236-aa62-56e5-a703-4c070f1c36c0", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-uncategorized." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5073e87f-ca4e-5b55-b7a5-13f6fb333a6f", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-uncategorized." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:408e8dc1-e28f-50f1-ac77-a7cb3094cf47", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-uncategorized." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f7f24b7f-92ac-52a3-9d1e-52c08d2a0006", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-uncategorized." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:cdb56595-4004-5447-94f5-50df66535f16", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-uncategorized." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0add749e-b9f3-55c1-8acc-01ced9727c30", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-uncategorized." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ae2294e9-0e13-56c4-9d6a-571613622d7e", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-uncategorized." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:91d6f749-0fb9-5506-b4d2-0d3be945b64b", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-uncategorized." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:eb8305ca-21f6-5737-9c36-39c6c8f69dc5", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-uncategorized." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f38636df-7c24-5296-9d48-cb69de458cf8", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf.systests:cxf-systests-uncategorized 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a84d918b-f26b-595a-82e0-0317ae32425d", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-uncategorized." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:79cc1c32-6bce-5add-af85-f6492d3ffcf4", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-uncategorized." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9f54a893-1e51-51b8-b959-4bd39ed359da", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-uncategorized." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a00c652f-5a64-5777-96cd-a83290834d12", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-uncategorized." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:294b7454-cd7a-5f03-8f7e-9e42b5bad043", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-uncategorized." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:45460a74-02cf-5a63-b059-18f0d5df64b8", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-uncategorized." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:54f059ad-ebcb-5622-9733-2f2898e24256", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-uncategorized." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0ec1ffdc-4a4e-53ac-92cf-d3f72fff7e59", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-uncategorized." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:cf9a622b-c172-58ca-8ffc-c82feffd8e36", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-uncategorized 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:980fdf52-7694-5560-95b8-1fc9b99b5373", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-uncategorized." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fa3baa04-6d1b-5159-8a43-e49a0003f126", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-uncategorized." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:610d9bd7-4ec2-5062-a32e-2a8fdc3d72f1", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-uncategorized." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:68341fdc-29cd-5a7c-8e8e-2ca988128edf", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-uncategorized 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b0780d90-8c83-51ac-af7c-9e814435c753", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-uncategorized." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a982d31c-5a5d-51b3-bd09-e6a8e18d70de", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-uncategorized." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d427b263-edd0-52c0-b93f-693f0d0f5c75", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-uncategorized." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ba6a2bd9-674e-55e5-8a49-d5fd317f75ad", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-uncategorized." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.3" } ] }