{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:65849775-598a-5e32-b0ab-a291db3f26ee", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.11-tuxcare.4", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-ws-specs", "version": "3.5.11-tuxcare.4", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.11-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:64a030ce-f896-52a4-85cd-2bc0fbdb7719", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ws-specs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:9412de9f-ba9b-5a16-b101-0cc8b3406899", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ws-specs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ffa72f0b-1952-56c3-ac9f-191a8b164a2c", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ws-specs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d5861ae0-c144-59cc-b150-439e0414749d", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ws-specs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e329237f-efa6-56b4-9061-0ca2597185e3", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ws-specs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:96bc88ad-3a71-56a7-8358-f13a7cccb727", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ws-specs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3a6bb84e-a382-5ee4-a628-d13a64ff8435", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ws-specs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c2504dc5-d8b5-5230-be90-06180909fafe", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ws-specs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:6a23544b-0f0d-53e3-9572-fb4bf7a65b59", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ws-specs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:71a76399-5116-5776-bb40-d1c40eaf778c", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ws-specs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2ed0ca71-81a0-5c35-b5c0-5739ad93c54b", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ws-specs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:028a9e81-7e80-558f-8631-dabb7339fef6", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ws-specs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:dbce37a8-37b9-52d5-a567-5864e534cf1c", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ws-specs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3339b44c-793c-50ac-8540-ba49cf87b8fc", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ws-specs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:86063182-ec19-5b7a-a170-f39418b756db", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ws-specs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:6c5a63bd-b980-5355-a0f8-e8f8fb23066b", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ws-specs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b95e9a14-f464-587e-ae7c-273b0c4a6b1c", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ws-specs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a2646ae5-ab0b-5dc4-a473-a5d862a7c95f", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ws-specs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:1a9df29e-3a75-576a-9316-382f7cf47345", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ws-specs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:baf69f65-e12f-5bd1-a4f8-60992fc7846c", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ws-specs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:fca50f07-0876-5cc5-90bc-b7c5942af176", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ws-specs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:efb339be-bdb2-5053-850e-27fb6039aabb", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ws-specs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8349a9fb-63ef-5895-80bf-ed1fe965092f", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ws-specs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8013a01e-e227-5374-8a43-930030901901", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ws-specs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:9f6e446a-6aae-55ac-9f36-851f1ac3e469", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ws-specs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:17b6bd3d-27c9-535a-9d16-e1bec98a6cb8", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-ws-specs 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c189fcd0-5d7b-51d9-84c8-b154ca1f51d5", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ws-specs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:19b508f7-d52f-5631-9d68-afed7b9fd2b2", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.systests:cxf-systests-ws-specs 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:55b585a8-fe3b-586a-b028-ce7623693192", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ws-specs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4bb5d0f5-7227-5487-a700-ad5f9b949071", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-ws-specs 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0d63023b-288a-55a6-ad03-27088ea8b56a", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ws-specs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:fcb45b65-60eb-5050-963c-bb10ba6594e4", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ws-specs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.11-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.11-tuxcare.4" } ] }