{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:9d646041-114f-567c-a119-5c3291c958a2", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.4", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-frontend-jaxrs", "version": "3.5.9-tuxcare.4", "purl": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:06188c5c-32d5-5c57-b99c-814ac83c2904", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ff401ef7-95b0-5c62-ba7f-a9748cd00d8a", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:841ff0b9-ede7-5530-a859-fb09a7b1b0a4", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ec7446b6-7b5f-56e3-b445-4ebb3274edd8", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4baf842b-8dc4-5792-a288-c8ee9d75755d", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:da6e7aed-7a6a-522a-ba9b-6c372bd9468f", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f39decf9-b9fd-5424-8f87-384df1f37a6c", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d56dc531-2c84-5e81-bd68-0c0546f3dd7b", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:83d46575-1132-536f-a11b-3ec5687b7ac2", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:fde3a90c-fbe8-514a-82f5-be8f2b4babec", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:31860b35-17b6-57f5-a689-5aff8a28952d", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ecad1a61-e8d0-519c-93fa-c719cede7b65", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c4fed208-23c8-5c44-bd9f-f3b6800e34be", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7c78fa5c-459f-5a4d-ae65-56d41ed822ec", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:fac91142-8a1e-5c8b-9ecb-3855eeb7e9c2", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:caa93481-b120-50c4-9826-82778e0a9e2a", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:def2c913-d531-5f9d-9ace-9a644358b8f6", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf:cxf-rt-frontend-jaxrs 3.5.9-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f96a0b69-4db8-5346-aeb5-eae9888252c7", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:01a1d143-1ff5-59e3-b33d-20963b27a1a8", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:eeb696d1-8779-5253-a9ff-e2950905daa9", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:71c8d34f-13d0-5d59-940b-cae64b2a8a36", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a0a6ad0d-dfee-5252-b41b-288d9dcfed5e", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:da0131f9-a475-5e6f-8943-687018088411", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:49a98549-4927-5a3b-9072-1e6bcced7f2a", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:edcae417-2de6-55db-9fb5-b023ed51643b", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:aa6fef10-e142-5721-940c-15b9e1c6020e", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-frontend-jaxrs 3.5.9-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:731b65fd-e0c6-5688-9aa3-b9f9941275b8", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:68efa3aa-1e8b-5a07-99b8-9f2da4a85f0f", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d92fd8b1-66ca-5446-bd47-b341bf6e77e7", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:374527bc-f629-52fc-90a2-2a747bb1b795", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-frontend-jaxrs 3.5.9-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3403eff0-34ff-5996-8e4c-68411755759e", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:55094c95-1cf8-5dc5-95b8-d506ce4631e6", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d71ab339-4508-5103-801d-692154240cfb", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:48547c31-9d01-5d56-be7b-9382d785dc92", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.9-tuxcare.4" } ] }