{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:63a7eb71-3fac-599c-9a6f-405b96d2acdd", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.4", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-frontend-jaxrs", "version": "3.5.11-tuxcare.4", "purl": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:5c86bda0-e520-51e4-8ab1-daf02611ec2c", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:878e615d-db58-5157-9be1-dab2b3cb11e8", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:1a1a9767-143d-5c0a-8aa7-0696c1bc8987", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0f8ee03d-1d28-523c-b0f1-5c434ce40861", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b9746f8d-5215-530e-a588-056c692472c2", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:03fd299c-2b29-5b59-9262-47ee9ce9f320", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c1dd0109-d743-5317-83d0-afa6ab4e1359", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:39ad606f-be40-58d4-8810-a9ccac1871e4", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:885738f6-0ee7-5236-ae4e-054bc8b28996", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:520c7c77-05a2-5b20-b11c-e4abbac137f3", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7bc2604f-b869-5d69-9a04-437a12b1724a", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:99f74502-847e-5635-8866-44600d1d9dce", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d14028b1-9a69-56a2-9593-200ceef0d187", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:449cf601-d7c8-5a81-91d5-93aaef440133", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ded502cd-0976-5f92-a53e-a2fa2f0521c0", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4df43f43-e0e3-519f-af7b-eb926a7fc8c7", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3fa318f0-9ca2-5c54-8023-09869e296a2d", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:9c851cea-a51f-5eff-9c00-54be1b928a8f", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ce2d24cd-8402-588b-83b2-bac64f79579a", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a8541823-2621-5fb9-be3a-e923d04fa40a", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a4a6bc13-1d1a-52c5-87a5-87500c94ea84", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:1f27838b-a5f3-5a07-b3c7-ec64cb94c0fd", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b0396816-1d9a-5617-9870-5c1f2758916c", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d49cb130-e207-5568-acc8-e0e368d8a64a", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:56b540c5-2e48-5fb1-b18f-4e241b1f6a3c", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:badbf0fc-d64c-5201-9aa9-26ba9a7f6418", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-frontend-jaxrs 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:107ed5f5-6d8e-5c94-bdd9-cc4a3eea12c7", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:9cd362fa-d2c8-5762-81e8-42c0376064d9", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-rt-frontend-jaxrs 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:03c1c9f3-a904-57ee-8127-639018deec0b", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:21e7fe5a-7280-5c58-aefe-a6d32fd258db", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-frontend-jaxrs 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a680b2e1-b742-5aab-9599-ab126dfaa142", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a9ab0644-8af9-5fa0-a7af-71c988517b79", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.4" } ] }