{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:2c3d23fa-da39-5aa3-b575-bd491dbb61ff", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.6", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-ws-security", "version": "3.5.11-tuxcare.6", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.6" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:596f2772-21e2-51f4-b114-953585925b27", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:50ee5ec9-9f34-5de7-bebc-d0cc7473f410", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:c6b4a2ac-cd44-5aba-b8c6-88ef9ea3f575", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:443b15ca-7a0b-52c3-9e7b-d381ec8326b6", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:09c023af-f000-556f-b27e-f9ecdbd7db9b", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:ad4dcc5e-dcfe-5599-95b4-dfa62411e284", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:f657b01c-da24-522b-a226-086703ca07ca", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:a5e73360-46b5-5bd6-ae2c-7818f7d89322", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:d24c48bf-6c83-5c61-b449-56bc885a10d8", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:cbe2f0e4-bcf1-52f4-bfd0-ff39b454b41e", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:9d8042cf-8753-577e-b1ab-66d44325bc17", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:9b10d2f0-a035-573a-9e97-c37a965a2e9c", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:a435a1e2-665f-5ef1-96f6-de7309303c3e", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:abd5fed1-1057-5d35-afab-5b768aa9f5b0", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:49573736-94d4-53c8-9365-7c0222ef9062", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:b814c768-caf2-5233-8f28-7e3753c8dbe1", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:e548d0d6-a974-58ca-95b4-27a7cfa5942c", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:d2ebdd58-7c87-58ea-9919-f3b54f06e192", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:669065a7-d4b8-5922-87cd-e726f975e094", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:221546e2-bd08-5334-b330-a29fdf2a2c6d", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:8783e9fa-7e0e-59b8-8b63-7940ec616865", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:16c6fdd5-960d-53f1-9f18-ea3c31886903", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:33320bde-0705-5bdd-9c22-5b3133fae8ca", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:5803af3e-7a7f-5434-97dc-095e9dd4ebab", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:a175fe24-f685-5eac-b1df-44c538006b05", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:ae18e580-e47a-5562-82d4-210a73cf4dfb", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-ws-security 3.5.11-tuxcare.6." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:154ca859-7ee7-5dc5-b85b-549c6431f7db", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:c7205086-f65b-5944-ae29-b6f613af1ff7", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.systests:cxf-systests-ws-security 3.5.11-tuxcare.6." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:3d34eae1-ee5b-59da-8e92-5f446c55d3b5", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:a3c5d525-5c78-5544-8a94-7827b9bdaca8", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-ws-security 3.5.11-tuxcare.6." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:17f6b01c-d781-5340-9757-2a634c2f56a9", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:79d69356-13ff-5164-a1d8-c24ad1555fe7", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.6 of org.apache.cxf.systests:cxf-systests-ws-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.6" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-security@3.5.11-tuxcare.6" } ] }