{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:8e02c7dd-fb2b-5f62-a6fd-a94943d40408", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.2", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-ws-security", "version": "3.5.11-tuxcare.2", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:802874c7-f13b-529b-8ab9-64986704fa8e", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c30714c9-cd33-552d-a1fc-f2f9dfa4448d", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:60251bcd-c262-57c5-9d22-3de2314851c0", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b4bd8fad-d967-5bb9-9bf8-21cf5c5c42b0", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0515630b-82ad-54d8-8dd2-b2767103b8c4", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:be53f05a-9735-54e3-bc48-57fe244ee828", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f745aa30-4bf7-5943-91fc-310d9724b704", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:919e00ca-0572-570f-98a2-e23fc0939cf8", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cb72d30d-9e26-58af-982a-4d8f165ee410", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:05e8c9b1-4ab7-56b2-8c8d-32107baec976", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5aab9c69-cd22-529d-aa6a-a78564b25668", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a8883c80-4440-58e8-a883-b54832b2ede4", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6901dbb5-bec3-5720-80ab-81fef980a9b5", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:df43fa84-4385-5b67-a8cf-6e0d93e18184", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0f34d372-b232-5c37-a8d6-180fd37a78e5", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:80b9211e-7cab-5062-80ff-ce7640de4b36", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:068657df-fe6a-54f9-ac06-3341402dd0f7", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bde89621-b5bc-5a4c-a439-5d1b11fea474", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:51ba7073-49a0-5338-952a-d2803f6bf177", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f33d68ae-10ed-588f-ab24-2a8db217d551", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9ff6ea7c-8590-5517-84bc-0fa1b9454111", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:268fdc22-f9ea-562c-a875-0eca1bea5827", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e0eaf6ff-8bea-528f-b4a6-a9e1e45c0d2b", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4b39b034-74a5-5552-b335-de6676df0a1d", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c66556f9-6364-537d-b166-7880d25093f8", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:23493d1b-d065-5db3-8d1b-e53818977255", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-ws-security 3.5.11-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:02150656-ba7d-5161-a49d-bcc98fe061d7", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d4889232-0cef-5098-8ebd-96148482168c", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.systests:cxf-systests-ws-security 3.5.11-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:962e65f5-3c88-5b2d-b9c6-31c210f322e0", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1a80af88-bdb3-56c3-a1e2-cad507dca5b6", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-ws-security 3.5.11-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:becca249-f9fc-55e8-8bfd-5c86584fd17b", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:53350c51-ac78-550d-828f-232db3cb911a", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.2 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.2" } ] }