{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:c2620d0a-86fa-5926-b6cd-50575d2ff3a3", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.2", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-frontend-js", "version": "3.5.9-tuxcare.2", "purl": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:a97e5d2c-c489-59fb-be5e-b1357195984a", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e782711c-404b-50e1-bc3c-bb9311a34536", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7a5d7147-8de9-5860-9b9b-8c84aa46b4e0", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0fea4149-9d14-59d6-b558-230220118eb9", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d5aaf8d6-f508-5eae-829d-8ee252659872", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6c3ff2a3-ab85-58c7-be81-a79b33060ce6", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f5d9f1b5-e87c-594a-99ba-68714f6fd90e", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1f71271f-8383-5587-83ec-f667e5371da9", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:29722f06-44c9-5d5a-97fe-951cc471c17f", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f76d03f9-70ec-531a-9731-f83d5984d739", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:59f9b0c8-e953-5e4d-8b9b-0503fb2d95f3", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0fcff1a7-c677-5551-bc94-f1f525ae702b", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:14aa484d-0245-5a37-9ae6-c47b6f272172", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a3d980d1-b38d-5736-bc3f-bd7113118434", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8b9d95c1-f3ea-5da9-96c5-7b4cc47003d2", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b81e15a3-2c6f-575c-8146-d96a038d8cc7", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:49183e1c-1680-5f8f-a7a6-3f14dbe4b279", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf:cxf-rt-frontend-js 3.5.9-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c45a8c04-ebf2-5879-af64-32845050ad1a", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c1780937-54c1-5a2a-a2ff-3438e86d5ea4", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d2c68381-4443-583e-8d7f-0eb80b5d683c", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0b1edee3-c1e1-5d6d-87be-ac74b929ac16", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:37b6aa45-6421-5ec4-9ca7-b147ff9d0721", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:361f6a75-a904-54c9-9809-30b9809c96a5", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7a96383b-ea02-5858-9e3d-d8ea6e795744", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b15c714d-587f-5913-bf18-0f8f1cd90e1e", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c9abf36d-c9b4-5fae-a600-0192487b6d0c", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-frontend-js 3.5.9-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7061754b-4cf3-539e-9f1e-b33a85c24721", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1454c7ff-6fbd-5957-b143-a592cab574ec", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ef9d1d10-12c1-5170-a316-d4f43ac9ded9", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:61a7ccc0-e075-5b0e-9955-b943cab539d7", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-frontend-js 3.5.9-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cf803041-e543-5d53-aeae-62cb041b12d8", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:74aaec76-c0be-599e-b684-ce14e981e11e", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e1f77952-3a60-58a2-9ca9-2d62696adb92", "id": "CVE-2025-48795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-48795 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:953b1713-5413-52f9-b83e-8692524d2264", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.2" } ] }