{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:a02b5b4c-b1f0-513f-bca8-217e2672dcd2", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.4", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-uncategorized", "version": "3.5.9-tuxcare.4", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:ae4929f1-b6ee-5bc5-9987-c6dadced5c46", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-uncategorized." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:868f80c1-f800-578c-8262-08dda033d17d", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-uncategorized." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:36cb8b0b-d024-524b-bd11-817903bae3c2", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-uncategorized." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:5e2c0981-e098-5087-bda2-79a149156f30", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-uncategorized." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c2bef248-0fd7-5ab6-9afc-be65f944a29c", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-uncategorized." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b7805e31-be0a-53e8-8f77-0a39d916a4a4", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-uncategorized." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4899727e-3230-54bb-a725-1b2a237c03de", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-uncategorized." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f775ea2f-5117-5208-8bee-0a54a22cf8f9", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-uncategorized." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a14ed82f-f7ed-5559-a0b9-fe96821c9438", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-uncategorized." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:647b0546-8180-50d7-9bd2-29219977ae61", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-uncategorized." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:97972345-f679-5148-b09e-f61a5fc3fca9", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-uncategorized." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3671901d-194a-5154-98c7-e8377ff55819", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-uncategorized." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0bc68053-38d1-514b-9c2d-edd10296af00", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-uncategorized." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c317cc93-e482-529f-9d59-6f451ee8e370", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-uncategorized." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8e4c1c78-a1b6-57cc-b0e3-9ed78dbe7846", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-uncategorized." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:5590d9c0-ba93-59e8-8ca6-d8a49db99a56", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-uncategorized." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b604d7fc-bc64-57d3-bc50-6b1cfcde9c4a", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf.systests:cxf-systests-uncategorized 3.5.9-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:9416c751-23ae-502c-94c0-38df05fd954d", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-uncategorized." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:cbe3d366-9ce1-5bc8-9d70-a85ee101c38f", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-uncategorized." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a43124f1-6954-53a9-a49d-f9c9094c8461", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-uncategorized." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a9d0d488-5516-5603-ac1d-5238df39cb07", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-uncategorized." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f1ff97e7-7b4d-5e6b-95c7-9e2523a9330d", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-uncategorized." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:5cba94fd-76ff-5773-8424-18e50572013d", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-uncategorized." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:21087e46-3698-5d75-b828-7c3891a1a2d7", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-uncategorized." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0a0534bc-6576-5d0a-98f5-30aaa2ad4288", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-uncategorized." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f89bcb29-c43a-501d-bd32-c9c54cee4416", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-uncategorized 3.5.9-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:9f56965c-07cf-5d7c-a909-f73508353b86", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-uncategorized." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:03e6eb41-fc9f-5483-88f2-c2805b2de9c9", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-uncategorized." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8fa5793c-b4ad-52c6-9735-2c46dbde61c0", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-uncategorized." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7c522e22-b694-5ba4-815b-fb4f017f6d42", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-uncategorized 3.5.9-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:500b37ca-9cc2-5f2c-afe7-7c8090767412", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-uncategorized." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ab99fc21-f484-5610-ac56-050754aa9994", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-uncategorized." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:23f3b41d-d06c-5064-8a56-96d04a0b4a83", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-uncategorized." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:eab06ef2-f525-5874-961d-6dc13bafebb3", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-uncategorized." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-uncategorized@3.5.9-tuxcare.4" } ] }