{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:bee1019f-457f-5c08-9e7f-bcfd4c52f199", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.3", "type": "library", "group": "org.apache.cxf", "name": "cxf-java2wadl-plugin", "version": "3.5.11-tuxcare.3", "purl": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:01da2690-f77b-58d1-9572-823ebf95e6d4", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9668b61d-89f6-5504-87ca-97f2e6f4668d", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3ca5872b-ad18-5f71-b267-faaad5b24cde", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:99dd9548-200e-50ee-a5f2-cf371613adc9", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:02a411e5-d52d-586a-af60-c3db90df4683", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:658e4b5c-f86c-58a7-876f-a8e23a6b9a19", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:593747f4-efe1-546a-b1c5-52ec7de71244", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:36a383f8-8256-50e5-bb19-e1996e55d4ad", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:18e41832-29e0-5bfb-9e84-2e5dab62ad79", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e282695e-aade-52ba-9a51-6bf00c56030c", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2afdb447-1d68-5419-91d7-f4ecd05321dd", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e3af28aa-7670-51e7-85f5-cafdcff3eb4f", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:cc6d026f-12a5-56dc-b44c-0b5f3a84350a", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:aff4330b-4bcd-5834-b977-db7c43fa9c52", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bdade3c0-81c7-53dc-bdef-458c26c85ab0", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:91b957b1-325c-5806-b3a7-03b342ff2b7e", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b2626333-afe8-5c16-ac26-c5d98bffd7a7", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:cd75dd03-9657-5043-b4c3-95cd94379940", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:cf62602b-14e6-54cd-a84c-57e3ab6c2534", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c9065b1a-1db2-5272-be7a-9a8a2fa578c6", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2483dd41-a6f5-5c57-95fc-2666b2eb8e2e", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5599652c-0659-50e2-941a-47af64f51ac2", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:71399d5c-21c7-531e-a17a-c5fb7e0ec569", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:46d3ae4f-30b8-5edd-a271-e6e650f341ec", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bb2a1802-c117-5210-9386-9dbf7955fe24", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ad3df26f-ba1e-5203-a9bb-1a0aecc05c20", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-java2wadl-plugin 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0f5b080c-faae-53e7-a751-9e18dc40894c", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ffe85ec3-8b3c-56e0-a3f9-d6a85e6458c9", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-java2wadl-plugin 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1ee2be35-dc1b-58b0-ac01-aca73922bc8e", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8bdd0de9-937e-5531-bc60-ffdc195f0b9f", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-java2wadl-plugin 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2c0242c3-a1bc-5c5f-af67-ec1f45a271e3", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:afd6f3b0-8a21-510c-97ae-a4e2df78efc0", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.11-tuxcare.3" } ] }