{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:2b459dc7-22cf-5eba-ad64-e6b65937bf66", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9.tuxcare.1", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-wsdl-maven", "version": "3.5.9.tuxcare.1", "purl": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9.tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:ea15f5f9-620c-5a34-9917-df8c752299f4", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-wsdl-maven." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d1368026-d90f-5243-a6fd-620145ff8bb6", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-wsdl-maven." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4c500f83-d763-5e86-95be-2faec1d1d08b", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-wsdl-maven." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3e7e438d-4c24-583d-aa24-32af8379a5c6", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-wsdl-maven." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ea9dc402-aea4-5513-8d14-952dab088de3", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-wsdl-maven." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cfc138a3-0d57-5d20-9100-4b8843df756d", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-wsdl-maven." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a0024ff8-45fd-588b-b19b-c41dc40dd56d", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-wsdl-maven." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6e4e2d78-b74c-577a-92f9-a70b98a76f06", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-wsdl-maven." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:09d8a9c5-52f9-57e1-bf86-82b529ff948b", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-wsdl-maven." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e6f2ff7c-24a7-5059-bd33-8b63b08672b0", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-wsdl-maven." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:38c40d67-ff08-5016-872f-b33f05be914a", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-wsdl-maven." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:391d5fff-540d-5731-86fc-112bfc9b14f1", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-wsdl-maven." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:813b9428-043b-5e45-9fd9-f2e01c193b9f", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-wsdl-maven." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:361af1e2-ef03-545c-9200-cad10398d056", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-wsdl-maven." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:891028c0-035e-5494-9d68-211cbe582fca", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-wsdl-maven." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b47c614a-b4c9-56ad-9866-4db8069145d9", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-wsdl-maven." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dd77eb45-4a14-5506-8709-961da905a4be", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf.systests:cxf-wsdl-maven 3.5.9.tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3126a571-512c-5bc9-8f2d-47f60256db5c", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-wsdl-maven." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ae49e653-9c66-57c0-9ac9-12555269fceb", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-wsdl-maven." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:11d64fc0-4ad5-57f9-b98f-b2473cff06ed", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-wsdl-maven." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:54af5688-2294-5e97-a65c-a974a23ce25f", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-wsdl-maven." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:caa504f2-27a9-5d39-9ba4-6b7871343d93", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-wsdl-maven." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ddd08a9b-f317-5e5a-aa51-dc3c44341f5b", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-wsdl-maven." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:28c777e2-40a7-5674-8723-dd840bfb192d", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-wsdl-maven." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:200e6032-9e83-5ee4-a025-99e90ad797a2", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-wsdl-maven." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ec119605-56cd-55ed-ac03-18b480df8e54", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-wsdl-maven 3.5.9.tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2d070773-1d8b-587c-81e7-7aa540d05beb", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-wsdl-maven." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6a559bba-2b38-5676-a81a-c98731156850", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-wsdl-maven." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7d0a925b-59ca-564d-b7e6-e39cbd898506", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-wsdl-maven." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ef273393-7f3e-58db-8eb8-192197b273ea", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-wsdl-maven 3.5.9.tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a2f29845-8439-5334-8afc-418ae84e4f29", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-wsdl-maven." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bc3cc6de-e51f-55bb-94fb-9fcf807f4994", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-wsdl-maven." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:38e9db40-2fd6-5d63-a047-6f395ec5647c", "id": "CVE-2025-48795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-48795 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-wsdl-maven." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:48b2b180-68e7-5044-ae55-d202af7e846b", "id": "CVE-2025-48913", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-48913 affects version 3.5.9.tuxcare.1 of org.apache.cxf.systests:cxf-wsdl-maven." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9.tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-wsdl-maven@3.5.9.tuxcare.1" } ] }