{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:a9c89530-cd93-5810-a128-0bfad41090c3", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.3", "type": "library", "group": "org.apache.cxf", "name": "cxf-integration-tracing-brave", "version": "3.5.11-tuxcare.3", "purl": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:7ff8c4e2-1570-5607-aa16-0d6e494e185c", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b297fa80-1b04-50dc-b444-fdd058136745", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:17ee2157-e06f-5161-a9bd-d8f8b832373f", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:50935659-ca9c-5417-8f6f-56b6f977d406", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:99bce767-a247-5e5a-ac1d-df1afaa709a8", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a0167798-9733-5cad-ad29-073a38ae80f7", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bd5642d3-92cd-5884-8461-10c37b1080e4", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:30b9d4c1-7567-5d19-853f-226951ea460f", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:24810205-a346-5a19-aeef-d02903fba264", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7a98ee59-c2c2-5362-963d-e7433482b366", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:29c9c174-1446-5687-bbf1-583bb93113c6", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c30f04c9-02d5-5e09-b899-f232d3f3a223", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b3c562cd-3ba9-5a38-94de-1e15e96852c6", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:67e857de-5b35-534e-a904-d742695a536a", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:242b9e65-74ae-51eb-8592-172b374c7487", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ea34da67-e65f-5250-bb1a-730c972ea52d", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1e7bb58c-87ad-5924-b233-566138c8ad5f", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:eaec2459-bc51-5dee-8cb3-5d588dc9fae7", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:49c28bb6-4d80-5763-aa74-0142f04af8a8", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:99ebdcd0-e268-51f2-b250-fbf748679863", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:44f112c9-839d-54be-aead-8a6472728aee", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d66cd342-f2bb-5451-a046-c5751b90be71", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:74dcb238-327c-58b3-a2b6-68bef3b6968b", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fb5c1558-6501-5d16-9fa2-efee6ea66ca7", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fe78b2b7-155e-5f47-ace2-bb219cc8959c", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ae68b551-0a9f-5269-90d2-f6739cde5cda", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-integration-tracing-brave 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f8c6f16d-9755-57f4-b2eb-37c71c292d19", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e00c0032-caf4-5f06-bcc4-d2fb3ae4ee97", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-integration-tracing-brave 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5eedc394-6c05-53e9-bf21-27f8d9a167f5", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:52fa68bc-40e4-549b-92cf-d6142a56a368", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-integration-tracing-brave 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d274c13a-4b4b-5852-8253-3210fcc9b509", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1b1ef1d0-3e6b-5b9f-abf4-e9dd1f107bc1", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.3" } ] }