{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:6df72d63-36f5-5756-b0ac-8b86f0fe16fa", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.9-tuxcare.4", "type": "library", "group": "org.apache.cxf", "name": "cxf-codegen-plugin", "version": "3.5.9-tuxcare.4", "purl": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.9-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:b6cccf71-99ef-5846-a51b-c57ac1b91924", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c983a513-4ba2-57d5-9dfe-98465df4c7d5", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ac8a4bb9-7e55-50f2-8c3d-a1cd7be65ab2", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:6fbc6399-aefe-5269-9d2b-237502e33fff", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:76e8c054-4914-5bd9-b715-486c503a6d0f", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8d63c135-b73f-5b5d-8c96-7337ff523570", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:95f79bfb-4110-5a56-bdbf-523d04f77539", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8febaca7-d378-573b-a1c7-ad80cf49cfca", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:db7878a8-ec03-53fc-9a04-f6c8e6ec1dfa", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f2f2af5f-f159-556d-b42b-13209bdae7c3", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d67b4d98-5247-5346-9999-c96d3cb1421e", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:bbaed218-16b4-5ee4-9b9b-f4811bff0787", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:1daaaf6d-9720-5f72-9722-4aaaeeb93151", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:151a3241-e89d-5f11-9fe6-ecc3c68d6c1d", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:1d740db6-b431-55a5-a596-2a9ba6e0eb31", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:fb6b99e2-4dfd-5add-93c2-e963fe561f6d", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c4663bd8-91c3-5ff9-93a8-4f15f9755bad", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf:cxf-codegen-plugin 3.5.9-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4a4c9f63-2ea1-59fd-a3d3-0ac75166fc2e", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:31998e1d-a947-5fbc-9784-fbf0302ad01c", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7c4bb0b8-aafb-5e66-8b8f-e7ac44d24ac6", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f8d55661-683a-5ffd-8610-f396a647bf1b", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:03f9682a-af83-5300-a7c1-3438ed548ba4", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:da68ea06-de36-569b-b0c9-81b31a038fb4", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:37339e1c-fd10-5a75-b0b1-29ece9889942", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:271eff3a-d5f7-535e-8bdb-4ae6ceb079a0", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4734e4b2-d463-518d-82b6-4862734ceaf4", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-codegen-plugin 3.5.9-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c5e39e25-2ca4-5484-a594-f00a615d36f1", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a9f278b8-6b00-58ef-9f2a-4d3757787f64", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3cd07fff-17b5-5cce-b545-eddea0e77fa0", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:1488bb11-b357-5f1a-b660-20733abcbba0", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-codegen-plugin 3.5.9-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d20aa0d9-05f2-5d99-a706-84bf1cb92cca", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d5d9c928-e662-5047-ba2c-f9d7a1478b12", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:58987f14-f3b3-5699-b726-0a3b855c6d01", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7aaff804-d359-5bdf-8cbd-c14e56c3c25c", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-codegen-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.9-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-codegen-plugin@3.5.9-tuxcare.4" } ] }