{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:f63dad40-2476-5e89-9ac3-8367db33e930", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.9-tuxcare.3", "type": "library", "group": "org.apache.cxf", "name": "cxf-integration-tracing-opentracing", "version": "3.5.9-tuxcare.3", "purl": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.9-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:c63f668d-6ba9-5667-8d2b-3150e0ac9b4b", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-opentracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b144841d-9c4c-5a22-a0b1-3175d6bbd9aa", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-opentracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3c516799-a440-552d-a1e9-3ffee78ec385", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-opentracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a82bd88b-d781-5f6b-bcb2-56b41a2c3e6e", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-opentracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:60f1cb38-e766-55ca-98f4-1653b148532e", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-opentracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:87155b4a-e838-5a1d-b5a0-efe2f36a70f4", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-opentracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e71c1efa-6e2a-5863-a264-d79347fae2ae", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-opentracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d094e009-619f-5f9d-bc91-a2e914e27ae5", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-opentracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3f7b94eb-a652-5c25-9158-6615a0a73df8", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-opentracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b0a394f9-27a2-52f4-afba-33fba6d6da56", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-opentracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:67146ba7-52be-5f9b-b2ab-e8d94cae114f", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-opentracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6a363f81-e445-55a8-8972-037da0816972", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-opentracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:106f57b0-7aff-5944-9747-2f235740cab1", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-opentracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9e3d90fa-3d08-567b-b990-970b01760541", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-opentracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d0b29bd2-a59b-5a36-bb7c-a4788275ce27", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-opentracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:51ed6f5f-76ae-5cfc-b9ce-38d19c1a27cd", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-opentracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2d25f834-eac1-54fc-8365-e59e5f3f1fb0", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf:cxf-integration-tracing-opentracing 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:489e42cc-b378-5e6a-8f37-5450ba3d71f3", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-opentracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:aecc7caa-05c8-5706-ac84-3215d066d41a", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-opentracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1161d4fb-359f-5d43-b751-d106a542d5aa", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-opentracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:61541b98-b159-560a-9d09-5a84a47b22ee", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-opentracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3fb167a7-151a-5b06-9a8c-1b6b05f983f0", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-opentracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:49f01464-9382-5381-9266-3abc9c53accb", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-opentracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:da3a5458-fa61-5c1e-bb91-c05670c9866a", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-opentracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bb533c29-06ba-55cc-bfa6-788aa3a82d23", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-opentracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fd5211ec-71cd-5dd9-b391-39aa2534f908", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-integration-tracing-opentracing 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:669e3709-8e47-5215-b63d-38df939185aa", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-opentracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c4695d9c-ea6f-5496-bd09-deebc1a2f22d", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-opentracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8bcd50f3-72ec-56df-b4a5-1251e6144715", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-opentracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c9bc4a78-95ee-5ce1-a867-89f282059177", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-integration-tracing-opentracing 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0c91f173-56c3-55f9-8efe-0b4bea21db59", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-opentracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8b79bbcd-e009-5a29-a07d-caaa53d22742", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-opentracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:22c329e4-2e27-5b11-abe0-d153346010e4", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-opentracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6ade149c-3d6e-5148-883c-3608eee5b7af", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-integration-tracing-opentracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.9-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-tracing-opentracing@3.5.9-tuxcare.3" } ] }