{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:86e0b3ef-5587-5972-a800-58eca15cd76a", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.11-tuxcare.5", "type": "library", "group": "org.apache.cxf", "name": "cxf-integration-tracing-opentracing", "version": "3.5.11-tuxcare.5", "purl": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.11-tuxcare.5" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:f4c46dd3-a3ad-5474-8d3b-13a1b8cfc9fa", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-tracing-opentracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:e2962e89-8c2a-5f5f-ba64-cf9c017ea055", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-tracing-opentracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:aee130ce-0ee8-5260-87df-7340fc2c4bdc", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-tracing-opentracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:f054d4e8-e419-5637-871e-8923140c6423", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-tracing-opentracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:cfe88c24-cf14-51ab-b4d7-335185742d12", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-tracing-opentracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:ce4829f6-e4a3-5d10-b20d-46e0e77689eb", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-tracing-opentracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:4bdf1de5-21e4-5592-bacb-0d5829b81139", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-tracing-opentracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:78ae2215-71f2-5ab7-8be4-ff84cbac7123", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-tracing-opentracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:edbfd3f5-5990-56d5-93f3-96ebfb4e1ae7", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-tracing-opentracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:fa76eff1-5aa2-5dd6-839b-35edd9cb8d6c", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-tracing-opentracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:a33c533a-e8a6-56e6-91dc-218fc21bc2ab", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-tracing-opentracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:0b5106c2-9aab-5a08-a518-88416e4b5c94", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-tracing-opentracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:9775b8a0-3746-5a03-abc0-2c14ad46cc04", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-tracing-opentracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:41585560-bf23-5191-a46e-e3eadef61cf0", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-tracing-opentracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:0781b330-911f-5bc5-9675-7b1af6370200", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-tracing-opentracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:901e7fdb-d33a-504f-b2c4-5bffa9a99411", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-tracing-opentracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:c434733b-ccbc-5cb7-a1c8-834219d14522", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-tracing-opentracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:d57ff99d-84e5-5a37-9fb8-427bd10863bd", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-tracing-opentracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:80b525ed-cb3b-55d7-b635-d5e82a224f44", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-tracing-opentracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:781ab601-e8ce-5094-a1a8-8a7e4f1cf42f", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-tracing-opentracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:f2141561-6323-556c-92a6-9772e61dd63e", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-tracing-opentracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:b634304d-7b18-5a4f-a53b-f93e161e678c", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-tracing-opentracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:cddf4562-05c6-56d2-a40d-58454039f889", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-tracing-opentracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:2a70207a-a1a9-5224-88fa-28a482365e18", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-tracing-opentracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:61d7fd72-a9cf-5404-9ab3-7731fcd977f2", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-tracing-opentracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:1042e336-f80d-5ecb-9b2d-971b18982df9", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-integration-tracing-opentracing 3.5.11-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:5c7abef3-1bd5-54e8-80f5-82338e0e1603", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-tracing-opentracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:932752cf-c25d-5999-ba01-ed708267ff80", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-integration-tracing-opentracing 3.5.11-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:2bc0e3b9-6e4d-5f08-9a88-fe06a3c7fb34", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-tracing-opentracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:7cb9d6b4-fddf-5ea7-bd7a-80921ceffd62", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-integration-tracing-opentracing 3.5.11-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:f7a31b43-6024-5309-ac80-4dcb9284351f", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-tracing-opentracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:883e7653-4cc4-5b86-95e5-3d531f1c9275", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration-tracing-opentracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.11-tuxcare.5" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.11-tuxcare.5" } ] }