{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:5b0ca196-e5ea-5562-a05f-bb98275eb231", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.3", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-frontend", "version": "3.5.9-tuxcare.3", "purl": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:a1513c93-a169-5e6c-9fa5-1a4c8d1588dd", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5ea5c058-3b1c-5fe0-8a42-8e23edeb961f", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:194e62f4-ea46-58bb-a343-a8e365d651d4", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ab08d345-a227-5dfa-806a-7ef269dd703a", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:37b56d7b-d2c1-5f84-b9ca-fe3942222fef", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5b462f5f-bcf1-5383-94c6-1a8ac1cd8311", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:099be833-75fc-5a26-a1ca-9cd27e79a9db", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:55892262-411e-58d4-b2c1-10ed99e5da94", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c4fb5dfe-6d6e-581b-a953-9efaf13cf086", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5f0e24c0-23ef-55d7-88c6-aadd6cf501d4", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e008e436-8b1f-5f85-b339-c19f981955e0", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f234615e-fc6e-5c0c-9335-4efa9d58f8aa", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:17ae3a90-bcb7-5b85-9337-a200b98628bc", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:eacf0d2d-523f-59ab-a0b6-578ba7186d10", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e1b965e5-2782-5515-b442-fc0deb5310e0", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0e2f1819-36e7-5894-889e-5fc206144422", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3a0bc3bf-5b78-534d-aa34-468528d88390", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf:cxf-rt-frontend 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2150c096-1766-50e3-816f-d6e838ec4aca", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4d1551d1-8642-5fea-bcbb-21e11290a396", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3640d32c-2fa7-5742-bce8-31e1685f1fb3", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a081b62c-3557-5061-be2e-d8a042028814", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:73523dc7-c10f-513b-ba56-f69521c87447", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2532a74d-8d68-55f0-87b6-bf73aa4d56be", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ecd73597-4c4b-5976-b741-f42c655b5ddc", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4f28afaa-a7da-5ab6-9996-abe152e5341f", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:aaf6fe46-726b-5ac3-b474-89f5c03cc00e", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-frontend 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0d84f512-841f-5b7e-8b90-791cd1aa83be", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a799e12d-465b-556e-8b8a-b451d7cf70d9", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:33642e49-895c-5407-a450-07a3903a9c2f", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9a75ce1f-5a8f-5ce6-8d4d-9f0f5d4092ec", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-frontend 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a2e40606-7873-5904-afe1-63f644af9e80", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e4a5a007-c703-5d3f-b226-c3f087ba9512", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:57276465-6a7d-5172-9a1c-1db470b125af", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a5aff223-a4f5-5df0-a574-6bbd533b9fb0", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.3" } ] }