{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:975ca187-50e2-51be-bd0c-bc2a5fb92430", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9-tuxcare.3", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-wsdl-maven", "version": "3.5.9-tuxcare.3", "purl": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:47bf92ff-fb54-5c04-951f-1e6090094e81", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-wsdl-maven." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3ae25129-85ef-59fb-a686-31cfed0d0db5", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-wsdl-maven." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:676ef9b5-f4ea-50da-b7a1-11ab4d44b8d6", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-wsdl-maven." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c013b612-2c9f-5be1-b29c-47cf233cd1f8", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-wsdl-maven." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:75f543e4-cc9a-5e5e-98e1-62df7283d7db", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-wsdl-maven." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:85a11bde-25f8-5d0d-a4f6-a414d7d21956", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-wsdl-maven." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7222cfe9-cef1-5e48-b0cf-baacd4474652", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-wsdl-maven." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ea365301-f3ca-5f07-adc2-09805a7557fe", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-wsdl-maven." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e7978f36-b8d3-516c-9f1f-9e0994a8c37a", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-wsdl-maven." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:85bbb4b9-bc4d-5db3-8384-8ff26663b77b", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-wsdl-maven." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d7a9ff0b-6bea-5b1c-8b79-682e54fc86f2", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-wsdl-maven." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8ab83dd0-2794-59e7-8e20-48210c574bef", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-wsdl-maven." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:35df51e4-e6d5-53d2-89d6-d659deb8ca49", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-wsdl-maven." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4fe6679b-5e07-5cf6-a005-7885b0daad0f", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-wsdl-maven." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c8c47515-4ab1-5cec-92ff-54a61dbc283c", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-wsdl-maven." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:74f072ed-f0ed-56ef-979d-e3cdca1a3262", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-wsdl-maven." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6f62c407-9ba1-5de8-8b0c-2636424b2998", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf.systests:cxf-wsdl-maven 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7a3e2755-1f29-5a9f-affd-24aadbeb9f8f", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-wsdl-maven." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ed2b6823-4265-52db-bbdf-59607e8f2ccc", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-wsdl-maven." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a0b3e9aa-5fd5-52d5-9bd5-2505aa198e29", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-wsdl-maven." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d07c18f4-fd59-5220-a06b-cfe3e61d6717", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-wsdl-maven." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:79a50632-f4cf-583d-bd12-75172d2c0720", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-wsdl-maven." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9a85bf15-d0c3-57fe-b996-416f1b29659e", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-wsdl-maven." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bb3b7d71-eaf3-53c4-bfb1-f44d95b4e35c", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-wsdl-maven." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7d24899f-a923-532d-9a9c-b72ebc0b5aef", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-wsdl-maven." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:32052e8d-6c15-515c-a5c6-cc3cc6aa451a", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-wsdl-maven 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:af4fb1c5-9dc3-55e4-a36b-7cdeb28c63da", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-wsdl-maven." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f82df8fa-a4a6-54b7-aff0-b485de09e6fb", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-wsdl-maven." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fb1b2c7a-f30a-513e-8878-f886a0d46584", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-wsdl-maven." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:53e28398-6334-573b-a5c6-c0b95115f188", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-wsdl-maven 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ed006c68-9a22-5425-b374-e30630dc05ba", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-wsdl-maven." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:33280148-1c4a-53dc-9772-6385639ed2e2", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-wsdl-maven." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:09b166c9-707c-5400-891d-f02c347f99f3", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-wsdl-maven." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9eb8186f-8ff1-5290-9506-f68376155e2a", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf.systests:cxf-wsdl-maven." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9-tuxcare.3" } ] }