{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:1df9dcc9-bf45-51e5-9bd3-b481af092a0b", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.9-tuxcare.4", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests", "version": "3.5.9-tuxcare.4", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.9-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:619384f2-0184-5fd4-b0f3-2dbb294edd4b", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:50a440c8-1913-534b-87e1-e49ff8b3d5db", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8559a517-2a2d-5ec6-9e68-665095a7f4f1", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f929cd34-47fb-59ed-9543-7ef05163f02f", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c7eaf9f2-58c0-5cab-b97b-59c495d90b3d", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d4d2427a-31f3-5559-bdcd-8df2818be110", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:edb27cab-4123-56ad-bfad-73751cfb00ba", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:22ba1606-fe33-5910-8b0d-ccb7c13ffa23", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:906c9d73-9455-5657-915a-f6bbe8c85935", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:90bc3857-0824-5590-8891-656d8d1ecde0", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:74721514-1076-5fac-b5d3-e9735b4f97c0", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2178191d-f7c4-556f-8e46-e2c954731bf8", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8aafd86e-d48f-5720-8975-86848376a899", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:15b55573-4ee8-5331-a151-3f397cb9a02d", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8036f00d-f048-5191-a72a-d063cb480991", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f6c940ff-37d0-5c55-aada-119fcf1443ba", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d9891a2b-e3b9-5d7e-aed8-37273a06b047", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf.systests:cxf-systests 3.5.9-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:63339d48-6ede-55bf-82ae-9c4922ded3d5", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:170f35af-74a9-5f21-8f8a-ce777ae83d8a", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f183c5a3-d6c5-534a-99e6-356b9bba67d5", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d5428043-c19d-5c72-bd62-4d3f6d52eb1f", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e521098c-e14d-5ab9-a230-a6a2fbb1adf8", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:51d9fb36-c4c5-5489-9001-732e7cfa511b", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c2fbe984-82ea-56fd-adf7-a2b2d45e9801", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e5161c73-9ce2-5907-8e3b-f494e088eb16", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7a704e25-272e-5acd-8ad6-ab5501a748a1", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests 3.5.9-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:227af7d7-fed2-5202-82e7-76a257989bff", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8e845a64-b140-5cc6-88db-ad8a9df9e231", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a2980224-e783-54f2-8199-cfcf832759f5", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c81906e0-664e-5559-9908-00dbea8edf90", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests 3.5.9-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ff629a7d-9c15-5701-a738-7336efa20ee6", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4b3def77-e7af-5e1c-909d-7fa95b4cb67d", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ceb7233b-1fcd-511a-8a75-8a32bac755f0", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:30446033-e78b-50f1-af4c-1990393f789d", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.4 of org.apache.cxf.systests:cxf-systests." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.9-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests@3.5.9-tuxcare.4" } ] }