{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:96e94268-1b68-5bd9-b21a-54c869ed7dc6", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.9-tuxcare.4", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-ws-specs", "version": "3.5.9-tuxcare.4", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.9-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:69201b3f-73fb-5be6-b8c7-ba5958d1e66c", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ws-specs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:5a997b63-f787-53f8-8eed-b07b71469a3c", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ws-specs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:aa8c00ec-bd9e-51ea-bbab-433e2531467c", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ws-specs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:1a37dcc5-5c09-5308-a941-4774b8c2a21d", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ws-specs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d7e23108-56ef-508a-a727-08bc31154a6a", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ws-specs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e3531ed8-2f50-5a4e-ade3-3ffbaddb399b", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ws-specs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8a4b60a6-5725-5cf6-a3f3-1c61d22092b1", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ws-specs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:02c5450e-ad39-569e-a962-ae6370f37004", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ws-specs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:893652e5-25dc-5e52-b1b8-993efbd43df8", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ws-specs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:dec38380-e1ad-5112-a450-d18e7ab6f433", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ws-specs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:878df51f-b21e-5b7d-b881-b6673cbc7a05", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ws-specs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8a0aa78e-a7f2-5d20-b644-cbf86be22c5a", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ws-specs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8fe72b25-ef93-5591-a4ec-77ebc4c07598", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ws-specs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:11b38c89-71e9-5a87-b024-1d2a0bc26d76", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ws-specs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:9d8b020a-d908-5108-9b52-26daa29ce192", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ws-specs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:68590862-25dc-552a-b022-bbac50c13940", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ws-specs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d7c9600c-008a-5a2c-925f-c3a7e897c764", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf.systests:cxf-systests-ws-specs 3.5.9-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f2436bd5-4075-52cc-8a17-0d730a11e941", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ws-specs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c0b849cb-faa3-55c8-9533-e8e7ffa0e016", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ws-specs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c52a81a6-4a12-5f75-8790-195c13de943e", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ws-specs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:56752858-8a6f-55e4-bfc1-22e961467133", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ws-specs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:14ebcb00-ce9f-59ef-afc2-4d2129b19a50", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ws-specs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ced3ff43-35c1-5985-a016-74c40f306d9c", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ws-specs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:87ace17d-eb2b-5b61-89c3-1e630a13b1e4", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ws-specs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4160c72f-e2ff-5e92-b7ae-c01f23bf2c3c", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ws-specs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:6526567d-0207-5c71-84bd-16ddead4e4e3", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-ws-specs 3.5.9-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:bc007255-7f2f-5c70-b4c4-97232934b825", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ws-specs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:dd7d50c1-8185-5f71-81f8-a250c9cf07c2", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ws-specs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:50fba3f7-44e6-543d-9f91-27a591ede336", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ws-specs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:275f666c-62a5-5f41-99fa-05fefc1a654a", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-ws-specs 3.5.9-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:89fdb0d4-1ded-573d-bd19-620b4dffcf5f", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ws-specs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2a74dc3b-0648-524b-bc56-bafcee4a129d", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ws-specs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b2a25d45-0c2b-5e0f-afd6-0913786fccd0", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ws-specs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:bda79e5f-54b4-529f-b460-c7a2be3294af", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests-ws-specs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.9-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-ws-specs@3.5.9-tuxcare.4" } ] }