{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:ec56225a-630f-53a1-a556-f59d0fb6ce51", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.1", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-rs-client", "version": "3.5.11-tuxcare.1", "purl": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:5ea0c213-e32d-5b90-9def-014a489e85aa", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0b7afa23-38f9-5e80-900e-10b8f59b9b85", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dda093fc-bf33-55bc-851b-88f159a9a7c1", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8dc96de1-f4a2-58cf-83d2-2dc1cd5a100c", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3758baf4-ec65-53e8-8949-711705e10267", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4c4a717c-041b-514f-ade5-79b9a82ea775", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c6de6a38-092e-5e7c-bd3d-386d8b7af382", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5a0f423a-14de-5a8f-a5ab-b2cf3bf0b572", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:104158e3-6547-5522-bfe5-828a3101d5b4", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8d2e3ffd-4d62-55ad-a0d9-df784600362a", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c025baf3-8e4f-566a-8cae-0c7390a66012", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:62cc5d81-273a-51a9-8058-693c19b8568b", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ed3af4f5-e972-5d7c-92ba-6840e3813736", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1626de2b-31b6-5475-a88d-ca82c0953e83", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:94c7cc4f-a991-5682-a611-b028854f649b", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d45d7589-190a-5c90-99d9-61f7315894e6", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7a222185-9f47-5fa7-a55f-311205015ea3", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fbfc1add-f9cb-5750-84a5-831b98e89ef6", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7740fe91-d02d-5d2b-8885-4a515916f0f8", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:40648e65-f804-5e88-b36c-d24afc6a03e0", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d463d4e0-8df3-50e4-a9ba-9bfd90c5e095", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:98e549aa-31f7-5c15-8196-01863b9eda61", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:72531ab6-f6ec-5c57-b795-6fb3f9dab2b0", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2997f60f-7657-58fa-aac4-db2f71ace3ac", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:abcef455-d0f8-5e6e-8d84-7a70b084c0a5", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:82fcdb29-2cb5-53e0-8f05-f13416892398", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-rs-client 3.5.11-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c44b9cb5-0209-51b8-a7e9-9251079fbfe7", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:226852ea-18dd-5dc8-8d18-f2702dfc8035", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-rt-rs-client 3.5.11-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:678a9e60-def2-5397-950e-fd8ff98b7a95", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:35be6ba7-5877-5446-ac80-c97562e40380", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-rs-client 3.5.11-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a395a7c6-fa55-5e5f-9c8e-28cc82171f1e", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:15c044cd-959b-5afd-8c8d-6ddeb7074fa7", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.1" } ] }