{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:50cbe7e8-b143-57b1-82b9-be0d31ed485c", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.4", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-bindings-soap", "version": "3.5.11-tuxcare.4", "purl": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:b85dbfd9-e97f-5103-8ded-7d96a930886f", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-soap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4d807152-5c0c-51d1-9e00-836a25475f76", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-soap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:aa414576-1066-50d7-8902-8162fea5ddcf", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-soap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:294dddc1-973b-598d-9a97-a0ea0aafa930", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-soap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3bf85cd2-ce15-5ccb-844c-579ced23e20c", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-soap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:fe9e4afd-8baf-5bfb-bb86-9d3bdb8bdee9", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-soap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:78ded486-a73e-57fa-9eb8-d4b0d220831f", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-soap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0cb15132-ad7c-5906-9ddd-742d75e074f8", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-soap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:706f1383-01f5-52fb-a918-12b2acb34963", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-soap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:59c9ff41-6c7c-5689-8300-20b1698122a5", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-soap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:72acbf20-d6dc-5f5e-8544-3ae8a78676d5", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-soap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0ee9fa1a-e458-56d1-bd00-0e4396b85f7a", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-soap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7f43aeb9-6b83-5ad4-86d9-a94b1ed3084d", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-soap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:eba2936f-9e40-521d-9bf4-660faef1e3c7", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-soap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:08b4b920-1eb8-5f6d-b08b-7019e9d39dc9", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-soap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:9746a437-accc-5f5b-94b3-16b51c2751a8", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-soap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:33b65ebd-c918-5e3a-aa70-6a08616301b8", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-soap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:adfdc2d4-4a4a-5f25-a290-674fd9551461", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-soap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7a93ba9e-50bf-5030-9a3f-444cd35e3e75", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-soap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:433232d8-d731-52d8-93f2-c12bc3b51087", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-soap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e0a40ebf-7772-5606-a215-532fe33c9363", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-soap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0b3562e3-0ac1-59d8-979e-892b8df99383", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-soap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:57e1a000-b36f-5f58-b03b-167efbd43f66", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-soap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7434bee3-bcd4-5c60-82e1-38220ea0a9cf", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-soap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:eca5cc46-8b00-53d1-8a99-5d2904e5a027", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-soap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d43592da-148c-55a0-857f-aa5fe18e3b5b", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-bindings-soap 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:1c63dd87-5e75-556c-92ad-20e223dd5cb1", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-soap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:de901456-9baa-5f06-b98b-5f17c0f6f640", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-rt-bindings-soap 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:fd993034-fba5-51a1-8134-0fcc143ac2d8", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-soap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:653a1810-96df-53e9-a4dd-32ee4b16c8ea", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-bindings-soap 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ca53d2ed-16a3-5279-8f35-4ad2fae0c53b", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-soap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:dddfd5a5-f215-566c-99d7-4e0f8152854d", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-soap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-soap@3.5.11-tuxcare.4" } ] }