{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:eb7d6b86-edd7-5d2f-8be7-4a769cea2ca3", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-integration@3.5.11-tuxcare.5", "type": "library", "group": "org.apache.cxf", "name": "cxf-integration", "version": "3.5.11-tuxcare.5", "purl": "pkg:maven/org.apache.cxf/cxf-integration@3.5.11-tuxcare.5" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:3381128a-407d-503a-a19d-5974691a35f7", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:4d351273-a4f4-50b9-8f9c-bc93e9966dad", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:78c61ab7-0bea-5186-9752-26617bfcdda8", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:07565f9a-d003-5310-96d5-b7b0fcef7a9f", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:0148ceab-5c82-55f3-b988-c2e68009f525", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:79eb4004-04bb-5300-919d-ce92c4d3011c", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:0d3c7b9d-9208-5ae0-80c6-12bc15a035fa", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:9c59693f-2c30-5e03-afc5-7d7038896558", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:4f404306-a6ae-5489-9fa7-a8f2c4816c17", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:b94b7cc6-6205-5a82-bfea-3f9ca686739c", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:dd832cd4-c6ab-506a-84e0-a855934a19ab", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:920144c3-3783-5a59-bca1-1b83881a107b", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:4075d3d3-413b-5b39-a3b4-efb2dd5438f6", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:b1b1a9de-ae22-5011-a75d-6b8e6e96143e", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:0d987b38-77e5-5e83-95b0-6341411eae90", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:ea3626d3-a643-562b-a26a-c6c17e03dd5c", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:223d4125-f811-5a91-b3cf-bc42af73566d", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:681bee9a-3a4a-5b42-9e94-ac4f7ef25934", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:9fed96dc-173b-5154-a819-8aaed5319eb1", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:1a20e2f5-efd1-58c1-8033-8d2cfb48d758", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:387887b5-cae1-51c9-b415-74bf2e8a81c9", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:6c223dc5-9fd4-5bda-bd70-e85478189198", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:673618dd-7e61-5068-9922-e554f1b6c580", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:02810c9d-ecb9-53a1-a0b5-c21660255591", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:4bd41cf3-d5cc-59c7-b085-82759c46dab8", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:48de8561-88dc-536a-a760-ce22f8a111ce", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-integration 3.5.11-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:e9a88af7-6ee7-5407-802a-ed8406a057f4", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:70ba98a4-983d-53b1-9e48-e0d1a8cfd966", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-integration 3.5.11-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:99392faa-facd-5ff3-a1ac-712b1c137be5", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:b310abcc-7e68-51ca-93c2-dc95898fc618", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-integration 3.5.11-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:ae8589db-8fe7-5b87-a6e4-5f107af5f965", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:fd271894-8a5e-508a-b9d2-81a7ab1f7125", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-integration." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration@3.5.11-tuxcare.5" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration@3.5.11-tuxcare.5" } ] }