{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:c8ddca66-4c46-53ca-bd21-ecd42250c01e", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.9-tuxcare.3", "type": "library", "group": "org.apache.cxf", "name": "cxf-integration-tracing-brave", "version": "3.5.9-tuxcare.3", "purl": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.9-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:5643666a-2b9d-5e6c-8c50-05cebe83b145", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:63b823b8-8327-59df-861e-92482fcaeeb4", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9179b8f6-f820-5b76-921f-b35041119a87", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:de64707a-611f-5c29-8406-4271452f7ad7", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:cddc35a3-7cad-5fae-b5f8-76f8a9fa70c4", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fde88174-23fd-5d40-a728-ab78ec78dc7b", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:85cf08f7-13a3-5584-b0d9-d9a9c6a919ec", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:891ba57a-4385-52a8-b3ed-bf9624df49e7", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:05db80c6-31a6-5286-a483-764f3f827a2f", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e55beaa5-015c-5011-b3bf-15543a34a6f1", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:14a633d8-b5fd-591a-a314-6874b578044e", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2d788ae1-99ed-56e7-9704-e772695837b1", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:46192dd4-3f3e-541a-b66e-b39c8c5a7364", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bd553dcc-3d6f-5c01-a959-c67f21a3d5cd", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d1921a19-7f21-52c8-9a22-33a062dc58ba", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3affcb99-8b85-5b88-9190-cfc07aae5beb", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a7b95b57-60a0-51da-b39a-6d9f60332dcd", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf:cxf-integration-tracing-brave 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:514e9933-ab34-5e5f-bd68-1a089e121925", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:51e3b3b9-d214-5120-b142-28f826763ecb", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5f2409b9-97ce-53c5-ac66-df20105ae873", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:371541ef-f390-5c6d-8654-812b41174b9e", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f9a57e80-0ed7-5afb-88e1-b168441c6bf8", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d120c60e-62d0-56b9-87c4-3b7fbf2eebe5", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:490abf4b-4e61-5de5-9c45-f8e9af086fb3", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:90b6c824-1655-5533-a7f0-5b92b34faede", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9623bef0-8822-54a8-87eb-f7a90617e947", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-integration-tracing-brave 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bcde4730-492d-5a2e-a080-eedd6a590ca3", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:618f168d-b345-5e18-8307-f1c4c2906874", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:827ec959-7218-57aa-ae6f-6185d2949e7a", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f336c745-1194-5fd9-bc79-06da9b60bd85", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-integration-tracing-brave 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4dbd248a-30ee-5c64-8bfc-f27b2bd2e2e9", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d853133f-793b-5402-8650-7426fa3f37cf", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2002ea1c-b5b7-59e4-b409-984165de3608", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:da68055d-d889-5668-a411-dc3988a56a87", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-brave." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.9-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-brave@3.5.9-tuxcare.3" } ] }