{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:1b70dbd3-daa9-5f52-a804-855c665ebc6e", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.2", "type": "library", "group": "org.apache.cxf", "name": "cxf-integration-tracing-brave", "version": "3.5.11-tuxcare.2", "purl": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:f2b842d3-40c3-5500-8301-9b1603a8855c", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:249eac37-a21c-591f-bdf6-9ad609dba5f3", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d5a84276-0090-5550-aaa1-fdb0e365e59e", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fde9ece2-6692-52bb-9e71-b484f91b5982", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:11ef3ba7-02a4-5e86-8c35-25f870a2727d", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c5c034e1-c9c1-55b7-b4d3-65de012fdbfa", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:51101120-30e5-541e-bf93-d26219db4d34", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ebbe4c7d-bc1b-5faf-bb4a-7e0671737bba", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5ec09a0a-7abf-5bbc-a1df-c14d2205d24c", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:eb21cfc4-1c92-5542-81b8-9a9fef56445d", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cdbf4223-0a5d-50be-8a32-b75189d026f2", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fcae8b9b-d458-57fa-b3ff-15f980233268", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bf1171a5-04ad-5e99-bf97-623f8809df62", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:77e0bf5a-1b0e-5517-b5d5-e8c926df0f93", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c5fad1bb-2546-5a72-9a76-15315feeafc3", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f08fc4a2-df04-5a82-9eb1-bf47df4c328e", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3cb99c26-a699-5de2-83c9-f9e65ca117e0", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bbe08c85-7d4b-56d2-a6d4-9682105cfd83", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:62a223b9-dcf4-5a05-8d08-f9e14671b619", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7d20f3fa-f16a-5821-85f1-0e6e1eeb89e2", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d6fd413a-85fd-505f-aee4-1840f1a75f4d", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a6a2a7a1-c10a-5053-bedd-a2aa05bf3ae0", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bd35b774-a01e-518e-86f1-2a5b86fe8867", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ce0a0f50-c6dc-5a51-bbb2-6642030b8ebe", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:760ddb6e-3c6a-54da-b698-104bdd2e031d", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:184fc79b-e515-565a-8e32-abc6224b8a8c", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-integration-tracing-brave 3.5.11-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c9fb316d-4b15-5dbb-b2db-7ef0470db6a7", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:509df061-930a-57f7-a6fd-bc22324adc5b", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-integration-tracing-brave 3.5.11-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ec4525b6-2f2c-5fc9-9b2a-eaaac8095cfa", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1cea891a-839e-5038-a3e3-9af963a3a3a8", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-integration-tracing-brave 3.5.11-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2ea4b1d8-96e7-59ee-aadd-e56814c4fc95", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c53333a6-a4a4-592c-89f1-7641c5314ed1", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.2" } ] }