{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:370b17a6-5274-5b5c-b9d2-58236034e182", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.2", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-frontend-js", "version": "3.5.11-tuxcare.2", "purl": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:4e85a6cb-2ffb-51dc-be97-d7b29198457a", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:51cf3183-ccf2-5dbf-907a-59124bf1c19d", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:71d5de27-72a3-5140-a2aa-da344c4587f8", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ce1ee849-cb3f-5991-b388-1115002ef21d", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d64d094b-eb8f-513f-a8d3-f4c2f874822e", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4709614d-4efb-5af0-b24c-c6923804c83e", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:04ca6782-6b49-53af-8ff1-a80f20cbed36", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a7f9de66-44e7-574a-92aa-744b2a24aa74", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c414eee4-91ff-5baa-8f9e-2cd82bbe0f33", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4bb3c1b3-e4e6-5834-9e26-91301c07c0a7", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8988d059-ae4f-5a9a-8489-251b39030b51", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3c46057d-c5ff-5b6f-a684-58b496cb3ab1", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:11fbf32e-f080-57fe-a7cc-8cd3cfe32616", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4f27fabe-b7dc-5941-a6c2-fba78e478bb6", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c0793433-5fae-568d-9d64-d5609135bf47", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1f058694-d2b6-5338-a226-66eb33bb5f5b", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3d20b805-49ad-5b75-aa6d-7b6639daf1c9", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b21b7a68-1ca3-5d29-a7d4-222710064cca", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c4249beb-9804-5659-be9b-6da0df0c16e7", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d3c06067-ed05-54a8-968e-f75de6f390b4", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cf5b1019-5eaa-52d5-8d0b-7bf70a637319", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3e1bc8cc-e2f8-576e-b10c-14987fbe4da9", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1fbb759b-8b1f-5375-9f4e-b9c905403a79", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:51e1d5b7-79d4-55be-bee1-cb2da7a22755", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2b34f2e6-f9b4-56bf-8b05-b99d6463367d", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8b3a1e94-1d86-5074-b66b-62fe4bba6fdb", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-frontend-js 3.5.11-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:740046f8-a6af-5f48-9119-5a3b7f2d2b9b", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:62f4ea00-5950-5770-ab39-cba1a299bfc4", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-rt-frontend-js 3.5.11-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5d1d5196-4e1a-50c4-83d7-d0e2764fb3cf", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:28adee46-5adc-5d7c-9dbb-c887eaa957d6", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-frontend-js 3.5.11-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:acb1e751-a87b-57bd-948d-0a0562b8c9c0", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3a275020-b2cc-5176-b242-fc386a553a49", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.2" } ] }