{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:149b825e-fd10-57be-8ab9-15d40eabb26a", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.2", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-features-clustering", "version": "3.5.11-tuxcare.2", "purl": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:0958ac7a-7222-5b0a-bbc3-cbefbcd21430", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-features-clustering." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c91a8292-1b2b-5bb0-baf6-bea0697f1a1b", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-features-clustering." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:52f9f8cb-ea87-557c-a6ae-eb1b09fa34bc", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-features-clustering." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:524adeb5-546e-5089-8185-86a056e5cb0f", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-features-clustering." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a1f217bd-5f10-5503-a4b7-5d266ddfada8", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-features-clustering." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f38efc67-aff5-5e1c-a553-8b6ffca2a2f5", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-features-clustering." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:94112404-c785-54de-9e8f-32cdc6ce8ae4", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-features-clustering." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3b5383b6-5f69-55d4-8d8e-6803ac8c5a9a", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-features-clustering." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b013f351-baf2-53ff-85df-fcf4efc93600", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-features-clustering." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:96489eb8-7bf0-5a7d-9c57-e0e2d9eea3d8", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-features-clustering." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1d6f556d-3373-55ef-8bd2-be79eb4eb73f", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-features-clustering." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f7f4b62c-afbc-5802-8cf2-5fab3a9df599", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-features-clustering." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e42b54a6-66bd-525e-9548-166b80b8a16f", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-features-clustering." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:98c5537c-1c22-5ff4-8b64-5a9134bd7c7f", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-features-clustering." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8e8575b2-93c0-5348-903f-f208f1558b45", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-features-clustering." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e7fb70ef-b957-5b9b-8683-07bdefb9e064", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-features-clustering." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0adc8881-7eed-5a7a-96ca-c54d871f694f", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-features-clustering." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6d70944c-8fd4-56ea-a8b2-5ca8bf4a01a9", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-features-clustering." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:200e0519-c660-5f92-a5d3-2070ed3da8eb", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-features-clustering." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c7698f35-023e-5c27-bf34-62d809332dd1", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-features-clustering." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:372a8833-fa85-53da-9d5f-cdf0c05ec493", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-features-clustering." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3515c31a-0da6-5c0d-9f95-a9878952146e", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-features-clustering." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:05425d4b-585f-5597-8ab8-e2b9bf3aa62f", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-features-clustering." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:63f051e2-f0fe-5d7e-98a6-a146959c5120", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-features-clustering." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:af3242a2-583b-52c8-9467-53442306b178", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-features-clustering." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:548210c4-bec1-55ee-828c-a8dddc66b2e0", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-features-clustering 3.5.11-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f897240c-c22a-5c47-8134-e5d98ea2ff35", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-features-clustering." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b0d52b21-e3e8-50d8-95ee-ae70c5d5590d", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-rt-features-clustering 3.5.11-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:742c81e3-d412-5cd5-b7be-f89cc6b8e212", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-features-clustering." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:813dd4b9-66f2-5061-bf0f-77b4ca423ee2", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-features-clustering 3.5.11-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a91dd451-6d12-5b5a-b5e5-a80a48ea454e", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-features-clustering." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:66b47b17-3927-5d80-8e4d-62bc8ee1f40e", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-features-clustering." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.2" } ] }