{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:d707559a-7441-5af7-843a-ce0e3fd3fc73", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.3", "type": "library", "group": "org.apache.cxf", "name": "cxf-integration-jca", "version": "3.5.11-tuxcare.3", "purl": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:a8d94c94-e0ac-530b-bb74-a94d47134e91", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-integration-jca." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:601511fc-e6c2-5e4b-8687-c0de2c710b71", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-integration-jca." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:23f135c3-6a50-5e30-8a48-125a92c3d4bc", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-integration-jca." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3fe02042-c321-5b28-b9c2-a76ea9682c5a", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-integration-jca." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:25df3767-5cf8-540a-8977-5505a987127b", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-integration-jca." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:98d3ee0e-144f-59d8-9f26-4300de2192f1", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-integration-jca." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:683cd4e9-9afa-5390-88aa-9bc5b58bb869", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-integration-jca." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:36357afc-7a8c-59fb-a00f-968607b00a9c", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-integration-jca." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:28f3c310-d505-5882-b87d-556cf11e4fcc", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-integration-jca." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:031c7dca-cde5-55b4-9659-c6134f1700e4", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-integration-jca." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9acc2038-ace4-5222-95df-6b83e4aaebb2", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-integration-jca." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8ab92e92-eb17-5829-b0be-b407c0e9d305", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-integration-jca." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7be50607-b89a-5216-ada7-83b843abd08d", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-integration-jca." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:dd2d4135-76ac-5094-9883-fbd903280de3", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-integration-jca." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:dd5e3724-f409-5d3d-b93c-3a7e7213553a", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-integration-jca." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6b720fd2-5584-5884-9f8e-890562620270", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-integration-jca." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:08503c95-d5ac-5699-bdf5-8321c21e6a2f", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-integration-jca." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8a25f003-3062-5396-96d5-8c76c2df098e", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-integration-jca." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7a5bfc52-adc8-591b-b7e2-bc94609888e2", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-integration-jca." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e9295943-5c25-5b3f-a75d-6ca05c335d1d", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-integration-jca." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:52168e14-a495-5590-a127-ad1863bd7b9b", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-integration-jca." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d3381c9a-ba21-51bf-9aca-1e86be4d6121", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-integration-jca." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ed91dfb4-9fed-5ff5-931c-48f34680b342", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-integration-jca." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c4ddb2e2-45ca-59e8-9e54-639d6c3f5f33", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-integration-jca." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c441dff8-22a4-5d50-ba85-ff236bd6b050", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-integration-jca." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:01ade7e8-03ae-5e50-a562-e5c852a484b7", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-integration-jca 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2bcb7f46-8b2a-5258-9e81-56afb0324ec0", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-integration-jca." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:58f8e502-472f-52e9-983c-89748d11ccd5", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-integration-jca 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5710340b-98fd-512b-8222-6341d0096dbd", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-integration-jca." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:34fb2181-aa70-5e35-bd86-3d8fe30fb108", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-integration-jca 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4de3e8f2-1d6a-5983-9c66-539e9d5826ae", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-integration-jca." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5bf1e2a2-9192-5ad9-ba81-8e13bb92879a", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-integration-jca." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.3" } ] }