{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:2426339a-c657-5bb5-949c-2304a6682f6c", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.3", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-frontend-js", "version": "3.5.9-tuxcare.3", "purl": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:3b004ae6-1b8e-58e7-86ba-ce520479440f", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:db83d113-ccb3-5210-823b-40671a03a6bb", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:716334bd-68be-59da-bc8d-52d892738eaa", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6768ff2a-4ca2-554a-9afa-1e22a588eff3", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7cef1f67-e961-5d6c-a277-5f6da6625ae8", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0fc1f021-c013-5711-ac3e-907bb1f88565", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4aa478c9-7763-59f5-8834-a0f444d6f282", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:093ce9b1-4fc3-53a6-bb1c-2a197aa664dc", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:dd0809aa-16bc-5882-9279-4970b170f69f", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:23ac73a2-3fed-5df8-b1ab-b25ca9f6bcbf", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f026dd4b-bc12-570a-bbb7-72f69fc1acf1", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:04cbe7e7-6edf-5926-a70b-59f1b627631c", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7e2c1efc-e100-584f-be15-ddffec36347c", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:959a24fe-73dd-5b80-9be6-8a5d1ad4fda2", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:81730155-1ec4-50d4-ad78-9abc4ada8102", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:12dd740a-b82f-5fae-96ee-0b561d3d2bc9", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f5856d5b-71ba-50c5-9331-315dd7ea394e", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf:cxf-rt-frontend-js 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:23a3dd49-69f7-5f4b-8df2-f5a3398b8d8f", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:226d0457-8dbd-5670-97a8-22a50f4e89a8", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:71755f61-4e59-5925-9aba-5be6b472d0ec", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c61ee69b-0233-5df0-857f-a11fda2bcaf3", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bde12e2e-ca01-5879-9a15-514abe788206", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b7ba9e7e-a720-5486-a474-431339baf9e2", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e68c9103-46f2-54ed-a92e-d68b3d5f706e", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:416a986e-6dd6-5769-af16-15c2c3ef6f9d", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ddf4cd1c-8a4d-51aa-8982-4600b34fd879", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-frontend-js 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:033e8c42-24e4-5165-9287-9736956334f5", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ead74159-b659-53ba-8ad9-8ae16b6c17d8", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b98049f7-7d8c-5ccf-a829-e2d2eb5640ea", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3a6341f8-efa6-5940-b24e-5f92047605bc", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-frontend-js 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7a947eaf-35c4-5d46-a824-e5073f2cadd9", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:18e9d20c-f832-58e7-8987-495932cb06d5", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f52e791a-11e7-50a6-b124-3d6b9799bf74", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4c87c56e-68b6-5164-89ea-522fb28e8db8", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-frontend-js." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-js@3.5.9-tuxcare.3" } ] }