{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:d708ab96-78fb-5012-a017-f3598de65130", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.1", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-bindings-soap", "version": "3.5.11-tuxcare.1", "purl": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:fbffe61c-2600-5a17-8a72-1ac9d5102bdb", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-bindings-soap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8d0b4fb5-be44-5f60-a91c-45a7dbea44e3", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-bindings-soap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:65d9ff07-2c09-5511-82b7-06de632734b2", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-bindings-soap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:58cf65e3-a4fb-5ed4-825d-902d2690a7a4", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-bindings-soap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cf40873f-b0d2-561f-a2c0-c3aea7e0a536", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-bindings-soap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5e0c50a0-40ea-556b-acfe-e710f462b161", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-bindings-soap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:827ec184-b6b3-56b2-9bd5-d9fcdd4cdee5", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-bindings-soap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cb6cdbae-66e4-57a3-9e52-c6f4bd8b4e99", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-bindings-soap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:61fbb5fe-3876-5e26-b7fd-ca14f1041605", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-bindings-soap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b205f306-52be-5f0a-9efd-92a394c6cc07", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-bindings-soap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:af8edf7e-1955-51c2-a305-92a861eb5184", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-bindings-soap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:19a660e6-8e08-5da6-929c-651ed8bc7437", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-bindings-soap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1045b7b3-23de-50e8-aadc-5f6c9948ae2b", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-bindings-soap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6212aee6-3c87-508d-aee6-24686b1ad457", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-bindings-soap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a6a3a6f0-d2c0-5ccc-9db8-7456217132ac", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-bindings-soap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ad8e853a-ad49-57e0-9af0-2de003cbd393", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-bindings-soap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:06e909ac-d3aa-5508-93ec-ebb1550c0cc9", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-bindings-soap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bf001350-166f-5646-b8fb-4aaf0d6025c4", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-bindings-soap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:710ff70c-a6de-58eb-973b-02459c67db3d", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-bindings-soap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9cd543e8-927f-5b61-9a47-36f0a503ddd8", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-bindings-soap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:df6005e3-002a-53bc-a124-39e0871fc0c1", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-bindings-soap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:339ae923-fa85-5e14-a3c6-6e1744f8e880", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-bindings-soap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:30d4bfc1-c0bf-51ea-a512-843bdf053bd9", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-bindings-soap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0619fa0a-bfec-5e20-9721-a86f3a1d024d", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-bindings-soap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d9787d18-aa3e-5ed8-b7ae-d17c5a6a5622", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-bindings-soap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2ef21ba9-070d-5d48-b5c0-0969f549a10d", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-bindings-soap 3.5.11-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bfef6382-f397-5131-b2fc-28b01e38e001", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-bindings-soap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8728c0a8-06ac-50b8-a9e8-4d1948af8510", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-rt-bindings-soap 3.5.11-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f43adb26-f132-5046-883e-4f38039b5402", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-bindings-soap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ba54ae30-25ad-56f1-a19c-39542b5bf798", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-bindings-soap 3.5.11-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2e8bef0e-27c0-5c0d-b7cb-54a4f35b9995", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-bindings-soap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d25895ef-d509-5688-ae51-87637f81ba05", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-bindings-soap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.1" } ] }