{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:911cd54f-0520-593a-856b-cdc08b3fcb12", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.1", "type": "library", "group": "org.apache.cxf", "name": "cxf-java2wadl-plugin", "version": "3.5.11-tuxcare.1", "purl": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:b0c1de11-7178-576c-ba30-c040cb09036e", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b0511e3d-969c-51c9-8d48-85abc12ee3f0", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:da6ef8e3-74ab-5c7e-9d4c-f89e46f79ffc", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a72878cb-19d2-594c-bebb-3db9ed5145e3", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:81a5ddcf-1459-5321-8627-941e5b2a35c7", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:729272d8-b51c-5cac-b6c7-c85628a528a8", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f0061d8c-8fe2-566b-935e-2dc62e0401af", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9339b932-9df0-5daa-9a3e-bdb5ea2140f9", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:78e5c6f3-9ff9-5206-b3a9-2895e6c02066", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cdabbc14-b34c-533d-903b-b06e07d808b0", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e62b4818-1e82-5a70-a7d3-1d60e1b59fee", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3d5e98f3-0bb5-5088-aa7e-cc9855057657", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e5fc91d7-ae23-51e0-abd2-9e217379ad45", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e921b521-bdc3-5445-aa96-8e9cc12f5aaf", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e9edcc8a-b699-5641-9ccc-ac6374615113", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:611f588f-bfa1-5256-907e-b27f64bc1f87", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2fc43e79-062b-50ea-a5e5-7e7df893a368", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d23b87fb-3930-5aa9-96c1-d4945c2d0fc9", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:21c3b5ba-b703-5af6-8c42-fef24d2d4500", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:54bee0ec-6a67-5db0-b0d2-bccb20a07795", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:951bd834-ca90-5005-8813-049e26faa702", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:743e20b9-b0fd-53df-850b-dc04e4e4d794", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6b8c8fd7-2931-5007-ae51-3fb3ba9ea585", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:66b6a6f8-b19a-5f98-a777-4ebca121c661", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7bc5fcc6-510c-5d9a-92cf-b577a07dc330", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8f37f723-3e16-5985-89cd-3e5e5ea90d2c", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-java2wadl-plugin 3.5.11-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:125e9787-3e37-55c9-9015-b51511a7dca3", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8e40b2f4-c132-5a69-97fd-97fa23a9d435", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-java2wadl-plugin 3.5.11-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:924c392e-0b48-5e3c-894f-a28454367509", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9ae965f4-92fc-5a59-81a3-fdcbf53e09f5", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-java2wadl-plugin 3.5.11-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c78e8eb6-9bf6-5ee6-b0d9-e7a92a69ddd7", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:32b6d7e3-564b-5129-af53-ffbc6603c7b7", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.1" } ] }