{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:df1236b5-3661-56dc-8250-1e8e9f1a7a92", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.4", "type": "library", "group": "org.apache.cxf", "name": "cxf-codegen-plugin", "version": "3.5.11-tuxcare.4", "purl": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:11ab714c-ac4b-5a33-a870-dea4450a1714", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:20063d61-29d3-526a-89be-c89cd3fdedd5", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2771a783-2963-511a-9e99-c6ae154fd0e7", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:155c9325-64fa-5cce-9260-5e5645ce0d6b", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:31102cc3-76b5-59b8-9fb2-54faf0c4066b", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7de51518-78c0-5143-983d-79656c8697d8", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:511d61ad-1c35-52e2-90d0-410f79ca45c7", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3f3018ec-9b50-5d00-8dbb-03a8aa6acec6", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7112a665-5a75-5faf-9c1e-6d3d2a9af3b7", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2cdf9190-3ce3-5ee4-81d7-005550e086b8", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a1ad2066-d516-5fd7-a167-483e6513d203", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:cfe51c78-c4ea-595e-a05f-36df1957e242", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:586a7bef-fd6c-564c-8635-6c0f690e29b2", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:05aaf4ce-698f-5fb5-a341-5d342d87eb35", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f9100b7b-eb57-5ca3-9736-fafc6f4a6642", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2afa23e5-0b2c-56e5-8d41-f494b9ed3cb9", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:cdf8da01-e26c-55e8-9ce4-45506d855619", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7a35f1c0-3ccf-5bad-91cb-725601210d1e", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b76423f7-8a79-561b-857d-f1882646b91f", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b5880245-6ee6-532b-a6b1-f395449c48b9", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e222fedd-539b-5a6a-ba10-ca22b1d82db3", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7382217e-4ece-5550-b177-8e26f4770533", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:065a202e-dd2b-5931-8fe6-68da9f3bf972", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:13993898-4df4-5467-8f0c-13a6946f144e", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ff8a986e-2ec6-53f2-88b5-3803f2c5439d", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:95c7b58b-d454-5d9d-8fbf-66b0d1afb7c4", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-codegen-plugin 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:eab8a0c4-bd96-5258-b037-5c8a84db48be", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f94e9c65-8636-5a0f-9af5-76442fde40a8", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-codegen-plugin 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:368e5936-1ee6-5c06-b435-b5ca1c7db14d", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:54ba444d-aea9-58ad-bbf1-61d0a2ac786e", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-codegen-plugin 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:690f6633-5819-5c0d-b85c-152d5d922dd8", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:424400f3-cf26-5a7a-92c9-ddfa8a2dc9b6", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.11-tuxcare.4" } ] }