{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:eb0551a9-d0f5-5389-a9e5-3ec2b2bcb013", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.3", "type": "library", "group": "org.apache.cxf", "name": "cxf-corbatools-maven-plugin", "version": "3.5.11-tuxcare.3", "purl": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:9991b855-cd18-5555-a69e-6e4085090d50", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-corbatools-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7d167633-7128-51c3-982a-8b48c4607c57", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-corbatools-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:39917756-3f0d-5623-ac9a-582f5313f5a5", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-corbatools-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fbcc2f84-48a6-53a1-8927-a0ef860292cf", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-corbatools-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ced5265b-6fdd-5087-b6fe-ed2f1d1bcb81", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-corbatools-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c56c8f7a-6d8c-5a5b-b1f7-8384054fa82a", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-corbatools-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:59f87062-4333-5d63-bc61-0685fd410bef", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-corbatools-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5dbdb2e1-956b-583f-a0af-474a5e06a460", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-corbatools-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b24b7570-4a87-5ac8-8674-ee59ba4806f9", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-corbatools-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:dab2ac81-3bd6-5ec3-9712-0e41ef4c167d", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-corbatools-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:334037a7-c9f6-5837-8b62-3df74f5a7e11", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-corbatools-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ed373277-2489-5697-9fe3-eafc640c803a", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-corbatools-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:94e5274f-ea3f-5573-8696-b21e228b9c9e", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-corbatools-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f95d45f0-cffa-5502-a580-967f71e968e0", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-corbatools-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2988f90b-ac24-5b87-b8bf-72ad9b23ed51", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-corbatools-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5555bd93-4b19-51ef-8b9a-77154207fa2b", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-corbatools-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5a79bd3e-290f-56e4-8829-53a2d1584f6f", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-corbatools-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:19b80c93-0b58-56d5-b7e1-45f48dcd3918", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-corbatools-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:88bc7672-a6ff-50e9-bb1a-458b9743f7b0", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-corbatools-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:90d5d24a-21a5-581f-8da6-cce1c6268c82", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-corbatools-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:aad1b884-6958-5a6c-acd2-9aaa7df39a18", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-corbatools-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4fcc376d-9630-538c-850b-1945dcff9f29", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-corbatools-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:684d5f2c-ac22-5022-b5a2-b5f3845b16ca", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-corbatools-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ffdf213c-2956-532a-9fe2-8fa9479aa9da", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-corbatools-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3b78b0eb-a7ad-5304-83ae-187d95b0ad0a", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-corbatools-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:54abc95e-6500-54de-9b53-0accbe5b54ad", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-corbatools-maven-plugin 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b4aa5db6-caa6-5c87-91c0-720632d441c0", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-corbatools-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ed37a69c-cdf3-5376-86b0-a9fc24700e75", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-corbatools-maven-plugin 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a4af25e5-5599-5fb5-b590-d542968bcb8f", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-corbatools-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ab8a65bf-4915-5a07-a2dc-d81199f237b8", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-corbatools-maven-plugin 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:75655f90-30b5-5ba4-8a82-29e8122cd6b4", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-corbatools-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:657a7d23-20be-5a91-9ccc-660b49ccb118", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-corbatools-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.3" } ] }