{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:3e9f7283-9c2e-5899-8be7-5416d69faf1c", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.3", "type": "library", "group": "org.apache.cxf", "name": "cxf-codegen-plugin", "version": "3.5.11-tuxcare.3", "purl": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:5a7ff054-f060-540c-9d2a-9fa916879617", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5c02c173-6277-5090-8d25-b12b16776169", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9da66fc3-2e62-54d1-b43c-97a7aa5d3d61", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e46e9394-f452-5b75-ac07-c0c8f844227c", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f744baff-9a04-55d8-9489-5722c5b5eecd", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:39780b5b-8e62-5197-973a-7d10c18d90d5", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:be848625-9537-5ac6-b2aa-4c2bb1426da0", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:986ac5d7-aacb-5d3d-856b-8f90c7db60b3", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:15435f17-83a9-557b-b4c2-b8066367b56a", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:409f8e9f-d970-5256-9344-9b79272fdf6c", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:69e0ccf0-0ff3-5e53-8780-6328ae8b86d7", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:255065bd-38cd-5677-b646-4f46839e52ed", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a98495b8-663b-5802-b577-207a9c08ebcd", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:151dc81a-02b1-5028-82f2-d7c7fa51a21f", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d0f05a9c-4d5a-51c1-a760-bd9a4c2b8e59", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c12b5431-eec5-5e87-968e-c6e0130e4cd6", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:32109989-ebb0-5025-93fd-e176bdbc6cbe", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a7ee87a3-a98a-5d76-8217-1eeb5c47f4de", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:77795cac-3051-5fba-a613-393017d2bc30", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0afe619b-39b0-5933-a669-dbe973770370", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c8a5b217-fe39-57a4-896c-f034c3f91b23", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7aecd74c-ec9b-5a5a-a3ad-f6ca30557a46", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f664feaa-ec9b-56a7-b6a9-491e5192a189", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ca934fd8-2f42-5b71-9dc1-80db2890b8db", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3a32234b-df66-588a-b05f-a062660fa69e", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:db7128a1-94e9-517e-be22-f103601d0d59", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-codegen-plugin 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:488249aa-80f1-5a9a-a48a-57cb2c70d3f1", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:514b38c4-4e0a-5910-bdec-6814fc3ae7cc", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-codegen-plugin 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f40136f9-d868-5a3a-8aa8-9abe6cfad1b3", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9366e5b9-2634-5de8-adba-1a109a2717e8", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-codegen-plugin 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:91853020-95b6-551b-bbb7-2710ae480a20", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:771a6674-1729-5c42-b6e2-a3e480bf2bdc", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.3" } ] }