{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:b91e7b0c-d29e-53e5-9a36-8c1311f05ee6", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.3", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-features-clustering", "version": "3.5.11-tuxcare.3", "purl": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:edd4937e-a300-5a3d-8071-117643bab35f", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-features-clustering." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6f47d6ec-f6e4-54c1-aa70-4de138f02404", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-features-clustering." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f6f39dd8-6b79-51b9-a1ea-5394ca50285f", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-features-clustering." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2b436cd6-4c0e-5d65-b310-da990f301e28", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-features-clustering." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1e4ad658-32d3-59be-8eec-7625a023d32b", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-features-clustering." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8d2edcc7-d773-5125-b710-c16c07a90c57", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-features-clustering." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2187c523-e97c-5007-9879-d6895d7debc5", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-features-clustering." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7d0e32aa-8dd8-5dc4-98a1-2b7dc44920b6", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-features-clustering." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:055b19fb-78bf-5164-a368-be2b57dd57c1", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-features-clustering." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b0a543dc-7b39-5ee6-b65b-70f5675dd41c", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-features-clustering." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c7b2c751-cbee-5a6a-97c0-8091cf8a907c", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-features-clustering." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5e0624f6-50c1-53d1-a0f8-22029f26b975", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-features-clustering." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9284298b-4162-523c-b602-5b5813e31e57", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-features-clustering." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bc86f5f8-0a8b-5349-bbb2-1c01f3264f2d", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-features-clustering." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d36e1250-6ca7-5dff-acb9-c5b267f3721b", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-features-clustering." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a08af994-6e63-51c3-9d2e-de996699d17f", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-features-clustering." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a09ca845-f853-56c3-8869-2dd0e88563cc", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-features-clustering." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:123a2307-1f84-50ce-b78f-24669ddecfd9", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-features-clustering." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3469247e-c257-5a34-a354-0f10b2a2228d", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-features-clustering." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:510580f2-4287-571e-9c02-556c189b6dfa", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-features-clustering." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:03abc23a-7b0d-53b3-b89d-80f9382e63f7", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-features-clustering." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:50f25259-56b3-56c9-9e47-155f42579ba9", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-features-clustering." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:60b0ff42-593d-5a10-98e7-64bc2068faed", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-features-clustering." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:71dd319d-d81d-5e64-a835-d9dcdefe18ab", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-features-clustering." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:83e86d22-2255-5665-8cc0-09e245e0564d", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-features-clustering." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5cb082c1-3cd8-50b0-a8d9-f27ab36045bc", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-features-clustering 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:dbe03597-bb55-513a-b0c0-33dc12eceb86", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-features-clustering." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:39d62d51-f1d7-5dc8-832d-66c0aa7bd7b7", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-rt-features-clustering 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:08391c3e-dd05-57a1-8078-a5d931a66ff2", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-features-clustering." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0d968f35-04ea-5739-866a-fb55dca74185", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-features-clustering 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:dbd83912-9404-5e9b-a791-547e7d6644c7", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-features-clustering." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bfbf0642-790e-53e1-84ac-145f2d65b905", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-features-clustering." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-clustering@3.5.11-tuxcare.3" } ] }