{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:c978b8f3-5168-5c98-a198-c6eac52767aa", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.2", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-frontend-jaxrs", "version": "3.5.9-tuxcare.2", "purl": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:075de2dc-eb19-5888-86b7-db81edc68346", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5ef2f8f7-6923-5132-943b-37612f8c87c7", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:306dd954-788f-5862-9963-7aab5e110c0f", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a3feac46-bf0a-5537-bda6-d21bf8224ed7", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:92e7422a-1154-5ef6-ac28-2866b7017c02", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ca13cca0-a0f0-5ec3-a635-23d4d6e85279", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:49e8dadc-e388-5488-abd4-9e4d4fe4a478", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:90395499-0dc2-57e9-8b8f-a8c42387787c", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1d6e8c4c-ef61-5676-bccb-1bda85427ad5", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c482f8b8-b6e2-5117-9d29-285082ddb9ab", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a66f5b0a-6969-5de9-a0ea-63ff2ad03efb", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:72bcd066-efeb-5ca8-aaff-8d6a21f47c65", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:de97e227-1773-58ed-abe7-fcb505a51906", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ec3af1ac-f795-558f-b0ee-d5487a53496c", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f0d9cf6c-d79f-58e2-b96c-acc34535cd04", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:17b50f5e-bbe7-5df1-81d1-f474a3f41797", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bd97ac19-4f40-517b-ad73-ca3213a0ee4b", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf:cxf-rt-frontend-jaxrs 3.5.9-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fc90d305-9dee-58b0-8831-60d9fa7f81d0", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f6d70278-5764-59a2-9cdd-5962a7b906a8", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:59a33fe2-5303-5208-a243-40cf953d8a51", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c86f03c8-5bb3-505a-b0bd-2eeaf66e5cd5", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:de6aad81-e740-5c08-b9e0-f66595dad0b3", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8423556c-f18e-563b-863d-c972fb941994", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:536921bd-116e-543d-aee1-a959d7b694c8", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cc43d939-214a-51d1-a21b-466808f3a9e0", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b33235fe-c018-527d-8fea-80b9270a738f", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-frontend-jaxrs 3.5.9-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:27671de6-2291-52ce-9314-979e51aac254", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e69eae74-f1cb-5523-af26-ea50342707b0", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1db6f554-b187-5ad7-935e-b0d28dbfddeb", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0cf168ee-92f2-5add-8c82-f34dd2994479", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-frontend-jaxrs 3.5.9-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6fc762a6-e91f-59b0-b50d-a0f688222227", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c51d840f-795c-5d06-b7bb-2e1d9165797d", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:80d93094-bcce-5f75-b36d-5950499fdd4c", "id": "CVE-2025-48795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-48795 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:620fc62e-b3d9-5906-b526-5148703a4a76", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.2" } ] }