{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:6960f492-c711-579b-ace1-29692c89c4dc", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.1", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-frontend-jaxrs", "version": "3.5.11-tuxcare.1", "purl": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:9a1bbc29-ce66-58f7-861a-1770fabc7ee1", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:03e6c42d-b341-59c0-8ace-85091370606a", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5328e1e8-b42e-576a-a203-84d42ccacdf7", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a736c263-788b-52ca-ae08-fe49ebf9d996", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d7f7ae4b-c5a0-5777-a9b8-9a16e4f4e4ff", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:41d23b01-3354-5aad-991d-a44e6d30239c", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6396cf09-56a5-5626-8862-cddb4d395ccb", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:22a59302-89e9-5830-ac97-346ea6497ac5", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9e931a45-1497-5921-9d8e-da9c965b62ba", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d0fcdcff-c1d3-5b2d-b416-cca52c6b4f26", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:13fdfab3-2ab6-5ded-8d4d-10d03e58c42a", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d8495bfa-4805-5d20-a069-f531bfc14310", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ae290ba5-49bf-5ac5-a4fa-b51f3e632410", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ca13c152-c88a-5852-b633-2be7bfdf50fc", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:69d52bb3-ff87-5bcc-929a-0614f3ff9a05", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b3a1d442-eab7-5156-96ad-819c69651389", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6379446d-9c74-54f4-8025-1ba6a69788a4", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3a83f4c0-839a-5f9a-a703-6e1311a52979", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1ac1e126-552e-5be3-bf71-d7f2fd9daadc", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5f4c59db-9f2b-56a3-b4c2-ce9559ef496d", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ccc47a41-4a73-5453-97ec-74d7071dd7ca", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:061f3324-6e1e-5b0e-894e-2ad0f3946c61", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:65ec0a90-1a3d-51a4-8277-68faae37602a", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ba6051ca-7d2c-5a2c-b055-c1b2d0570dcf", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:00013fd7-9a49-5b87-ba3a-318d74c5e0f4", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8ac14888-c61d-5c34-a860-d778b5028968", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-frontend-jaxrs 3.5.11-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b679607e-954c-5d4c-aaf7-ff16b5a7b754", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5b03672c-f632-5655-a256-9eecb3b5ce82", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-rt-frontend-jaxrs 3.5.11-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c5dc61f6-408e-5d32-8346-cda6478f21fd", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a6eeda73-95c0-51cb-ac87-da9c5edcbf1c", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-frontend-jaxrs 3.5.11-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c86d15fe-2be8-5fcd-9e22-385a464c9325", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:71f21907-7695-5283-a399-3118912f62d5", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.1" } ] }