{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:76e79eb2-b578-5e36-bb83-81f4bb197cd7", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.11-tuxcare.4", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-bindings-xml", "version": "3.5.11-tuxcare.4", "purl": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.11-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:f8eb9ab9-a5b7-5ade-a016-cb08859c6016", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-xml." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c2504575-df7d-5f0f-94af-8f65bb9096cf", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-xml." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2a1ed6e4-84e1-5ab2-a57b-b16a028e5f12", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-xml." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:372559d2-1dd1-5c3c-91bd-2cfb99c02bd7", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-xml." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:5137ca56-c1bd-5172-a636-fc3f197f4b3b", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-xml." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:6aa2e8b2-313b-55f1-bfa3-dba6ec73c3ff", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-xml." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:1cef15b5-0cf1-5680-b5d0-92e40325d1e8", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-xml." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d0e7b300-3234-5a7f-822f-7c452a884c64", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-xml." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8d037f28-bbd2-5c0e-bfc5-4fb9247073d0", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-xml." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ec53882e-f44c-5c59-8d48-b5d2d69e3527", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-xml." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:fe7451b8-756a-5ebd-b3c3-9f6855daf426", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-xml." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:6b76b167-b229-5572-9ae1-775023a263b9", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-xml." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:699ea55a-87fe-534f-8648-30061992f08a", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-xml." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f53953fc-e0b4-5aae-8ee3-bacc4a8e99b7", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-xml." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a4ce8504-a739-5127-9507-6ddaca9e2e16", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-xml." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2568ef63-519a-5912-812e-cd2e9aab186b", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-xml." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2b1b5e6d-b527-5aa6-bf21-e47b73345469", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-xml." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:44d6b809-42b5-50ae-afe2-1d6101ce7603", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-xml." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8dced9ad-e046-51e3-94f4-391b487063b0", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-xml." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:921e1b90-83dd-55a1-a73d-193a1bf884c7", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-xml." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d6e5d7db-c323-5f21-9c94-e57664774d49", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-xml." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d080004c-9310-509b-86fc-7a3fd17114fe", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-xml." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:01ec221f-feac-5f7f-bd5a-b270d13d08ff", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-xml." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:6d6d68ae-054a-518d-9b5b-78a1bc62fbb9", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-xml." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:9363b66f-122f-5313-aa08-a9222d9df8e3", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-xml." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:00c3fdae-0239-546a-965b-2d283dbb10b0", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-bindings-xml 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:5728c3bf-ba89-5233-a389-6e8ba3f8dafb", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-xml." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3bc11a70-804b-5961-839d-2a51c0110e63", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-rt-bindings-xml 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7dd7edec-a7eb-5781-9ca7-786244d3e34c", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-xml." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ca57935d-7f30-5030-8e31-465bb5d373a8", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-bindings-xml 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d85415b5-d129-57a8-a7c9-71e5b0d5ef0f", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-xml." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:bfc84662-3972-5f48-b39b-4c46d40784b9", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-bindings-xml." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.11-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.11-tuxcare.4" } ] }