{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:7ea48843-e426-59b1-9aa1-0e717dffe731", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.11-tuxcare.5", "type": "library", "group": "org.apache.cxf", "name": "cxf-integration-spring-boot", "version": "3.5.11-tuxcare.5", "purl": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.11-tuxcare.5" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:a079b376-94ec-5147-bc16-7e0282f6f34b", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:5b19c4c8-c229-5cb3-8cf4-b2bb56e7e7e7", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:9f405179-e253-5c02-befc-55675a742e99", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:8a324792-e482-57f5-bb61-8a17637e90cd", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:fe103043-5e0e-503b-bed4-fa8b572ab89d", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:01057581-1626-56a1-8b14-941effd78f2f", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:b80c9c64-7341-5b08-b298-4026985d0c84", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:bea91d95-0955-5623-8d44-91250fa036ae", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:df82745d-2b72-5ebb-80df-f94480422ca8", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:4c848b94-0608-5e65-8875-eb4e3c95fd5b", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:5e3a15cf-f76a-5cbf-8df8-015fbe9bf3ce", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:23f45c4c-d47c-5a25-a8f6-70e629fbfddb", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:4c839616-5dc0-5644-85d0-ce254d5b6086", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:8218da29-aff5-5f0f-8cc6-a222ae479ed3", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:92b71e0a-0a06-52af-8794-6c9e5a6df050", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:8005b50a-f4c9-54ce-bee2-015166c6b2c9", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:105b5841-28ac-5e71-9737-52d262619f41", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:17e7fab8-a900-5302-87bf-47d40c10580a", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:8e0cb46c-fa93-5ea1-b561-2d7ac1139392", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:af09e71f-888e-51d2-a958-203da9e1ee2b", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:318d62fd-d0de-59e1-81d2-63f3abf8e922", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:c1899753-d8f9-51b2-92b8-7bee21ae7a94", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:b141218b-adf1-5d83-90d7-ae93b0f59526", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:14e07b34-c457-5110-ba4a-0aef6ec9ed4d", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:c1026a86-5671-5ff5-ba27-f91a851b0648", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:527be2bd-512f-5bec-b242-1c0cef453941", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-integration-spring-boot 3.5.11-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:3dfa5a63-68b1-5d02-a504-58690f6f475d", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:4041b24b-e26d-58e8-a9ca-a86fc9f43983", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-integration-spring-boot 3.5.11-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:bee85119-fae2-5c3d-8c6a-1e9bdf4b1827", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:5321a0dc-99aa-5fd5-8306-e38ac7b6a2f8", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-integration-spring-boot 3.5.11-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:50825824-4ec3-5fb7-a055-0f3638739c5b", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:664b1a27-a67a-52a5-806d-796f7ee2bda1", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.11-tuxcare.5" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.11-tuxcare.5" } ] }