{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:da34c3b7-2004-513a-8f72-a6a5fd3aaa0f", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.1", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-ws-security", "version": "3.5.11-tuxcare.1", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:ca34d722-a19f-5dff-8e4a-aa299830c147", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:87051099-a11a-58a9-ae8f-984eb15534f5", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9fa5d028-5b1f-533f-915d-c7bfd9811016", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:96b95b71-7f9f-570c-aa12-ccc648b19dbc", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:638c64ba-2704-5f76-8564-3bbeab66a9b0", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:549ec974-000b-5e2c-9747-78750547c618", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:096c2d3c-db1f-53ad-9af4-49cf055f5366", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:db3de920-a4ea-5906-9db9-2b77028aa99c", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:db083bc1-370e-56b1-ba7f-4db1c3cb265e", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:70fb7f2e-b11e-5fe7-a7f7-3c3b7758f144", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:01524367-df0a-56f5-99f5-1260233ba87e", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bf74df06-714c-5bb4-b93e-dad3e0c0ee6a", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5b28ee14-90ee-5e28-bf06-2a6c8e326fd3", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6073e123-9d7c-582c-ae85-86744da3f82c", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:04d2f952-76e6-5808-a4f4-62e8386a13cf", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c0dcaf30-b818-5f70-9a57-8dd5c6275508", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ee4e0c96-260e-5bf4-bc2b-4a68d31f74dc", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:46a4e3e3-8280-50bb-8ac5-4d8bc76eabed", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0b063b34-7d00-5997-9b30-b60ed9ee3f20", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:179aeb0a-638d-55a5-8f6c-ea23b9e2becd", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dada9e68-0f62-526b-9663-6c8bd8f3c87b", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f6ce3fa2-f742-59ee-b57c-e215141c7c93", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:abeeb6b0-a415-560d-9c25-7934c9014b69", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:da11d945-483b-52bc-8ede-2332ff348bab", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:87e21af9-b423-599c-8783-189177e81ad9", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a63ac5ff-1c00-5e11-9799-3c31072f7fc9", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-ws-security 3.5.11-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7795f001-eacc-5974-9b90-260d4939d582", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f5fa4f1e-2dd5-54f6-bf4c-caa5c25f0fe9", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.systests:cxf-systests-ws-security 3.5.11-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:85d3d545-d8e1-5939-a961-cffb8b18e7c8", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:aad68d40-827c-5cbc-8259-cc893cb37511", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-ws-security 3.5.11-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9f089993-88c7-5242-b280-0b0d17d8eb7d", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:67a71132-83c4-5d94-821b-e6dd4b8118a6", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.1 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.1" } ] }