{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:66e520ad-8aa2-5e6c-af0f-ec874883944f", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.4", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-frontend", "version": "3.5.9-tuxcare.4", "purl": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:008d0e4e-4c32-5799-8903-9efe4503307a", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a6c6a817-b4a8-52f9-97ab-9b8be0234f02", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:93ab59e5-6141-5fc8-8afd-610089f5c0aa", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:fda8bf39-b564-5fae-9ab4-a9e394579a6b", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ec34e548-d230-59ee-a0b1-24373ce93f64", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:52232f13-8a45-57e6-a64e-001ab7c2bc16", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c25646ea-7d35-51bf-9f18-aa64439b9a33", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e9394d91-94da-5332-8824-96e4c6fe1a0c", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:696cb43e-f77d-5fda-b448-d56b12612825", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c261fb1a-9236-50d9-85bb-c004cf5d9c22", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:db4a9237-4e18-5edd-b815-5b26b785f9d9", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4ebc33df-e174-5e26-bb3f-022625a441ff", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:74fff603-946c-55c7-b990-b8c3d79e317b", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e5f2a0a5-2c3e-5e68-ba91-19e0dfb55fa6", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:924dcdbb-b153-521d-969f-48a7b3083e4f", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c3ea5a95-556f-58e6-a083-aca2a33a618b", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d02f9d2f-69af-5667-b104-94b2e38427e4", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf:cxf-rt-frontend 3.5.9-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:dcb139bd-f716-5b4c-9570-d4fd239b761a", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e7d6aa20-b709-5dfb-a8d7-8e0ecef7f6d9", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2711e706-44e9-5a83-bfdc-8adccdf5e98a", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4990a3a9-2afd-517f-953c-e7d005874bed", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:98f64793-cbfb-5607-a43a-0c804f648ec9", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0d61a80d-49df-56a6-877b-e11d0caa6743", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ec0a79d2-82d9-5f0c-bd04-2bba29286c98", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2544693a-e83a-5845-8dd2-793419fe3d8c", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:481f932b-b12c-50f8-ba6c-39259e107c41", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-frontend 3.5.9-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:1620dc84-568c-5930-9a05-72c48a9f784a", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3a129bfd-dec7-58ed-90d0-3982f130b1e4", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4b9c8304-54a2-5628-8d56-4a8399533f7b", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f53cb7c4-b735-5976-a745-1420bac89a44", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-frontend 3.5.9-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3fafc3ae-5bcc-5fc8-8fe8-75c9fde0a4cf", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:6c98404a-7647-5df9-8ba8-3d2fc829ba1f", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:6b4d84da-0ef9-52f2-ad44-ec84e1da2b77", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:056769c9-5ceb-53c2-a171-c535d75548e7", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.4" } ] }