{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:af008d65-2782-5df2-8dc3-456eecb91e05", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.11-tuxcare.4", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests", "version": "3.5.11-tuxcare.4", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.11-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:a9be00da-061d-5063-b57f-552ecd527813", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d4869bc3-8b45-51a5-b82a-cefe13c57cf7", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a096c170-b34a-5994-8024-7a5a495348f3", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:48422ebf-480f-565a-b4f7-ccc831f1ec38", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:86ba1791-81e0-5b53-bf0f-f590ceacc17b", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:eb607a49-3f59-53b4-8a0a-27c8d0c75cf8", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c7d03ad3-971a-52a4-91f2-e6e1143e1369", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4cdd0763-efd5-5b0c-bd82-5cfced45b77f", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:67b568ba-38cd-5a43-99d4-86ee9f33d1a7", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7263d8fc-58a7-52a8-b96f-89513fdcdc97", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d6fe1d80-7ba3-5e2f-9080-d302d217f25d", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:9daf449b-c827-5f72-a850-ea996745159e", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:63920692-8642-571f-8e95-64019c6da253", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ea8d1058-a6c5-5c30-89db-efa29166c689", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:92b8688a-7fce-5ca5-816c-19b82b2839b0", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:654b7d5d-bd7d-5839-a8a1-964461264007", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:97a6ee42-1e56-5f47-aaf6-9b2a207cb696", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4d9a9c18-228a-5cd5-a67c-e6306e0835b3", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:197cb4d8-ad67-5835-83e8-3163f694e42f", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:711d6d2b-c1fc-5a36-b5ec-ba99d241d7c1", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0c8d9e25-8a98-5ccf-a99f-3d898407175f", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f2f171ab-7610-5bed-9f7f-ab59d00f7909", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:edceb33e-1598-59af-bc87-fb0d9640721e", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:6836b0d4-91b0-5c7b-b1a3-c5580051994f", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f42ff26a-1f75-5cf3-86bd-c9cf8f43cc35", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e20963a9-b9a3-5e65-9e8e-7f58753c15b1", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:39d6463a-1474-5460-9385-b80c97ee8992", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:97809896-101a-52af-be5c-8a1278fb8dd6", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.systests:cxf-systests 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f31a4d1e-3073-5f11-bdf2-bca7b350f6de", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:350c0f65-234e-5e02-bc39-ff1c838b4031", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:cd14ef18-d3ed-5874-894a-b853d01d51d6", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0787d83c-cc20-5628-ab8d-9b3b49492146", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.4 of org.apache.cxf.systests:cxf-systests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.11-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.11-tuxcare.4" } ] }