{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:338ae347-5c3f-56e2-a454-fe3cadb3e4a4", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.3", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-frontend-js", "version": "3.5.11-tuxcare.3", "purl": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:58802d08-0646-5dc8-b53a-9d3d099557b7", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4b131501-04da-5a91-8e24-f6f6b51ec9a2", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d580e4f2-b235-5d41-a32c-2d70c5565f24", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a2d163ee-2d25-5a2b-86af-2241dbc0d09e", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:84ae392d-fe5e-5ace-b719-42f67fd0b98e", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5a961f2f-bb42-587d-a737-072a1d7233e4", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:64856ede-575c-5e81-80a6-b542183efbf1", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:144bb195-477b-5aad-93d9-55e9097d6e17", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:dae119de-d8e5-5392-9baf-1eb53e0fcb4d", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:616f1e46-f77d-53f3-9052-2cfed6b89711", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:cdce864e-cb29-51fc-9d14-647b09c55929", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e36d0015-47b7-5a52-9786-f3b30f22434e", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b57be7b2-5a02-5610-b485-a1edd45b6eed", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3ff99bbf-da11-5408-a7fc-0cf39dc2d33a", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2a7043df-dea5-5aae-8815-e9518045a75f", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c1d11af5-ac0b-58e5-849c-064f0f45acd2", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0b6d48f2-f31c-55f9-86d3-c411889b2c07", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7c154cd6-932b-5de2-8a14-02838b6e24d8", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:67d49467-21f2-5dd5-b7b9-4cef4481d36b", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e030a30c-a789-5519-b9f1-b615abbc03cb", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5a32da37-c44f-5d55-ab2c-12aa7d793433", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:aa66f6df-949a-5604-a3c4-f33282110440", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f7dff923-94a0-5780-a7d6-9b04ada8a6e5", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:51fb1b3b-b5f8-559a-9071-a310dcbedda2", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:dbd7de31-45bf-5972-b3b8-80268d450803", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3a9a0091-6d94-5bdf-98e9-fb2df94b33c3", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-frontend-js 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:56e8a48c-51e5-5edf-ab06-31fddd80a4a2", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c52c658c-91d6-5d4e-bd0e-88090c3786cf", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-rt-frontend-js 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:45a1fbc8-da6b-5a43-be32-332df1085515", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d8c27dff-afb2-55a4-b2d6-c9442d339dc8", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-frontend-js 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:14a01fa7-3b4c-517d-b3a5-f27511562cdd", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:96ec04be-34cd-502f-aa80-51f226b7ae84", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.11-tuxcare.3" } ] }