{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:18b057fb-f02a-58df-a56f-08118b7b4a37", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security-examples@3.5.9-tuxcare.3", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-ws-security-examples", "version": "3.5.9-tuxcare.3", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security-examples@3.5.9-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:7b82a624-3c3c-55ec-8ff2-e61e16706c66", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-ws-security-examples." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security-examples@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fd394a92-3dcc-577b-8d0a-90691c4ab591", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-ws-security-examples." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security-examples@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0c06449c-8898-50ec-86b8-cc04e4e7b3c5", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-ws-security-examples." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security-examples@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:57eb37db-9997-57b3-b20c-a805999572f7", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-ws-security-examples." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security-examples@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:13f9b212-9f0c-5343-85c7-0b7495f724c1", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-ws-security-examples." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security-examples@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2db36268-5463-5410-a91c-34e3605b4383", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-ws-security-examples." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security-examples@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c7ed0f5d-93e9-5005-be7a-765e4ba8d7dc", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-ws-security-examples." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security-examples@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:999e7fd7-19b2-5ec0-901c-3ca9169ac612", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-ws-security-examples." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security-examples@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:48b18ece-a4f8-52ec-b883-da31b9403adc", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-ws-security-examples." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security-examples@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:658d42c9-74a3-56b5-b3ba-fe012df376f9", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-ws-security-examples." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security-examples@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6e727faa-ec48-5269-b40e-43a429682353", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-ws-security-examples." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security-examples@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:46a49041-eeea-57f4-8446-c34f9c6e27b9", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-ws-security-examples." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security-examples@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f2df093b-6bfd-5ecc-8331-8419a4fbd037", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-ws-security-examples." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security-examples@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0ae7816b-a4bd-52dc-badc-1ea14c94601f", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-ws-security-examples." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security-examples@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c40aabeb-eec1-5804-8251-3c8a63ed7230", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-ws-security-examples." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security-examples@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:04503bef-8707-5582-a233-1ffc937c091b", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-ws-security-examples." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security-examples@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a97234b9-c40e-59c8-959d-20b3b1d90ba2", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf.systests:cxf-systests-ws-security-examples 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security-examples@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:61bd1095-9ace-5c9b-bc79-689b66220846", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-ws-security-examples." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security-examples@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:951473b7-ddfd-55eb-b7e7-17bbcce619fe", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-ws-security-examples." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security-examples@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e67ebde8-2fcd-50e8-aa24-c6b624e3ded5", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-ws-security-examples." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security-examples@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:66de507d-0147-59b5-bd6e-c2fc341e3b18", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-ws-security-examples." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security-examples@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e1c2db15-48c1-5105-896b-b13336ce2ed0", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-ws-security-examples." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security-examples@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0d3fa7ec-910d-5283-bc67-778a7a28e3cc", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-ws-security-examples." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security-examples@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:775679be-03d6-5997-a9e8-c0de3c14e4e6", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-ws-security-examples." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security-examples@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ef3d83ba-7833-5feb-8ad7-98a26f7c1d9a", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-ws-security-examples." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security-examples@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f0c9fe7f-de65-5c83-a2f1-3d1b405ee23d", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-ws-security-examples 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security-examples@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a36e7652-666b-510e-8399-0eff4ded1537", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-ws-security-examples." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security-examples@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ae6e13c1-674b-5de0-bdbe-77a583a2463c", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-ws-security-examples." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security-examples@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a7487b7f-adbd-5764-ae7a-f09bd3b4e817", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-ws-security-examples." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security-examples@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7cf5b24b-2d78-5651-bed9-0f27e613d12c", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-ws-security-examples 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security-examples@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6b2b1258-01b3-5ecb-b580-0cc2e838bedd", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-ws-security-examples." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security-examples@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:084bdf27-6b45-5d0f-972f-7b33dc58a5c4", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-ws-security-examples." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security-examples@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:31acdae0-f9d7-543f-b621-edb4de246044", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-ws-security-examples." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security-examples@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:26fff397-09ec-5911-8f77-6563554a71fb", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-systests-ws-security-examples." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security-examples@3.5.9-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security-examples@3.5.9-tuxcare.3" } ] }