{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:11f74ea7-8924-5f2e-895b-5a1d0f7e0f5d", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9.tuxcare.1", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-frontend", "version": "3.5.9.tuxcare.1", "purl": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9.tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:89f108c7-cb3b-53e8-b442-bb704d6cd32b", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fbf5f64d-8f75-5da2-894d-aa52792ed38f", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:31dde090-0ab5-5ab4-8492-6fb8307caec8", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c423b4f1-5e17-54e9-bab2-86bdbf552183", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7b92cd6d-72cd-5a53-8ffb-b02b10456dac", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0d0ff705-938b-51b3-aa66-5e8d10039738", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:eb6ddcd9-8f2a-5a00-ad80-0bfbcd161b05", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:40d8419b-9c8f-5784-8875-ec2f38a83bc1", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3b6f3fc7-5ece-5a10-9117-afdd86d38bff", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bbebd227-1c2a-5e24-837e-bb5d80667e79", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:95fab752-c3e4-5cf8-ba86-af03506f1be8", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ec348ae3-4a54-535e-810f-5beeec895114", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:972403a9-eb01-538e-b5b0-66346a01ecde", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e595827a-6f12-5872-aca4-41430400736a", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3a0bc4c5-1410-5dbb-b81d-0ad384d90cc9", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3d427ded-bf8a-5364-9d08-9489d9324ec2", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a29d2d7e-8366-50f3-b914-c3d67796f0e6", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf:cxf-rt-frontend 3.5.9.tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7c86be82-4ae1-5ac0-9a14-cff85250a8f4", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a1ffd281-43e2-5863-80d7-10c0d7be12be", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9f0cb1b2-3b79-50fc-a0fa-2baf1147bdf4", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3d6e1793-1d5a-54b7-8f28-881d37d76c9f", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:476b542b-8c9a-52b6-8a1c-388a26dc5661", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bc3047d5-6034-534f-afe3-50f7226fb033", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:92c65468-a18e-5a54-8d88-a858bda51fbd", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:98a8b0f8-7107-5dd6-8fae-746510e4d87d", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:caa6ebb1-ad46-55f9-bc2d-58a8e0774b37", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-frontend 3.5.9.tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6afae82d-2156-5887-bd03-257bb633df7d", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a988d9f3-418c-5b7e-b1d2-054545985bb4", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4a25c7dc-dd1f-547f-bbe4-9d077f2df512", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0b9b4400-21c9-5dbe-8435-487531c9f708", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-frontend 3.5.9.tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cffd2b9a-09a6-507a-ac6b-b3bff56baea5", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f2e79b52-1fd8-5c72-b8a6-a04f9dd60e83", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2a62959b-5190-5287-9160-172229de268d", "id": "CVE-2025-48795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-48795 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3b84aed9-323f-591a-9f7a-41f9da683e95", "id": "CVE-2025-48913", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-48913 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9.tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9.tuxcare.1" } ] }