{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:8a95ec71-239b-558b-ad0d-3ea3b17866c2", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.5", "type": "library", "group": "org.apache.cxf", "name": "cxf-integration-tracing-brave", "version": "3.5.11-tuxcare.5", "purl": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.5" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:1b2a1357-9c9c-5ac4-8bdc-ac0ae2c9739e", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:481b5359-d8c8-50ca-bae6-b5eaca9ae0ca", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:a9df34fb-f7b1-5fe2-971b-0d1e05d4643a", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:b0c6fd3b-4f41-5f68-817d-9acaf4ad0470", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:ccd6ace6-e11e-54be-8afc-20e5c576ec75", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:6c0f8fbb-a592-5e03-8d85-52c3a0d2344d", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:a5d04f4d-382d-5bf1-b699-43a63e3eb728", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:bc2d6f33-4f7d-5c08-8ff9-205da85328e0", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:5d0eee4f-85c2-5c12-9b6f-f2f2b195eb4e", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:b69edc61-af14-5ec0-909a-c5f62ffa45a1", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:66f9db99-a3ce-5a41-9e0d-f4731d7f8683", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:0cf69c66-b2d3-56a1-967d-99471d790fc2", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:587a174f-9cae-53ed-b112-0d2e114865fc", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:9b156d8e-a48e-5f3a-8b11-03e0b2c1b511", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:0e7f5774-ddd1-5c71-9575-8e059d165137", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:272c9f34-553a-5a51-9e9d-29722b842133", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:c167cd80-2016-56f5-9197-553bb6600c64", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:56172e8c-bde9-5865-9c23-bc381699f381", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:b70dd3c7-343c-5985-a52b-36f0b7b884de", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:096e0c94-d068-5a0d-b9d5-91ae23799369", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:92d89110-a7db-552b-aff5-0063c8cccbd6", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:7629cedd-8953-5a93-a041-8447019a23d2", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:eba9307b-162b-507d-b9fa-cf1bd975e24a", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:ddeb1200-b2bd-5ba5-9b49-dbd1806ca1ee", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:87c1b242-4706-581b-b598-9417af29c418", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:91ae836a-a345-5859-8344-e18b1799f405", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-integration-tracing-brave 3.5.11-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:22d4ed6e-0126-5a02-8708-c47c24148fb3", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:ec53d732-a523-5f1b-b4c3-335bcf29a2db", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-integration-tracing-brave 3.5.11-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:25097926-bc5b-5f91-90bb-04c92a523ae2", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:42dd84a3-66cb-5c18-9e4b-4dcc48375cde", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-integration-tracing-brave 3.5.11-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:6e6768ee-d605-571b-81b8-774a98301ca6", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:2f513b66-2f5a-5b8f-80fd-9e474d2ab0aa", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.5" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.11-tuxcare.5" } ] }