{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:ba094284-f1c0-5cc9-a271-9b25e5e399a3", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-coloc@3.5.11-tuxcare.4", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-bindings-coloc", "version": "3.5.11-tuxcare.4", "purl": "pkg:maven/org.apache.cxf/cxf-rt-bindings-coloc@3.5.11-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:a86ffdb0-268e-5f15-af6d-978d24320561", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-coloc." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-coloc@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:5719339d-16c5-5747-affb-75c27cda7624", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-coloc." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-coloc@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2c3793e6-a210-5d92-982c-c32ea9dd87cd", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-coloc." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-coloc@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a1e3f7be-a9ab-5d01-b03e-21c8985b72c1", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-coloc." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-coloc@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c7dcdc9f-9d4c-517d-bb6f-585f30dfd88c", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-coloc." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-coloc@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:6ac103f3-29df-5159-be0d-c07405b0675d", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-coloc." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-coloc@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:61ff5988-74ca-5939-8818-ce67c669fbf7", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-coloc." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-coloc@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ce1b8488-04db-5b45-8cdb-d7407394de32", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-coloc." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-coloc@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b7ea0931-232d-5a2b-bd7a-f0c7b40bdb04", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-coloc." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-coloc@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b97087be-c31d-5e10-87cf-6fa2a84a2f42", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-coloc." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-coloc@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2708b2e8-d991-50c8-b6f5-f9fc3cb8ca42", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-coloc." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-coloc@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2f701439-3bdf-5cb2-aec4-3cfb69793072", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-coloc." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-coloc@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c0de2c0d-7bf4-52a7-96e1-5ad24d0fabb8", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-coloc." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-coloc@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c19b87f7-a1f6-5ecd-acf8-75ad963bd5b5", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-coloc." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-coloc@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ace15a1b-414e-5115-9bec-9e646768ae8b", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-coloc." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-coloc@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0805bb3f-1c7d-591b-bcca-6cbd8784dd9a", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-coloc." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-coloc@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a6bb7831-ca4d-5f23-bf7d-67f22b49da6e", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-coloc." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-coloc@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a8962e14-9199-5cce-8209-deece5f345e2", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-coloc." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-coloc@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:00d40b01-2b75-5995-bf62-de60c8829d72", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-coloc." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-coloc@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:76eb648a-4764-5866-976f-757294dbfbf4", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-coloc." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-coloc@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e6e067ec-a842-556d-b35e-22859734eeb6", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-coloc." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-coloc@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:476f2d0f-364d-5d55-ae1c-ac8938a825bc", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-coloc." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-coloc@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0341a611-167e-5bb5-8108-4c054f74b239", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-coloc." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-coloc@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:99d7a5e1-4f6c-51f2-897a-765b0bc3f64b", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-coloc." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-coloc@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e2658504-32ae-5bdc-a32f-30e99d5bfea3", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-coloc." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-coloc@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a1359ab7-8148-544f-ac64-635f95356fa0", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-bindings-coloc 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-coloc@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:9d1ac77f-e298-5ee8-b1ce-d1ad72501b49", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-coloc." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-coloc@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8ec8bb14-3edd-58e0-802c-7d39c4818013", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-rt-bindings-coloc 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-coloc@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:07fea618-def7-5e69-b27a-231ecaca27b7", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-coloc." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-coloc@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b979edcc-61d2-5514-b2f7-db39467a9dbd", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-bindings-coloc 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-coloc@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f7c546d2-ef4b-5d14-a8b0-61a551835b99", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-coloc." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-coloc@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:945ef142-7eb5-5bfb-a54d-3041447faf10", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-coloc." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-coloc@3.5.11-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-coloc@3.5.11-tuxcare.4" } ] }