{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:133c8b1d-550f-5b07-8847-b156432eadcd", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.2", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-rs-client", "version": "3.5.11-tuxcare.2", "purl": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:a80bdbfe-8517-59fe-b9f3-175d1c1bcd91", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f67f8b11-6222-596a-b64c-3db941c80f89", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f8c82bad-be16-54d7-a3c5-f28886faf93f", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:97b99f2d-327e-5fe0-8340-174238ca3809", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:62874a45-29ab-5dc0-ac3a-ec13ceb3731b", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:95168e3c-dc44-53a8-bfe2-2f51defbd714", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6742a41c-174e-5fc1-b0b7-f7cba67783e3", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1cb24fe6-ba1a-5626-bf93-511f67383f32", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f10665dd-ab26-56ef-9d32-60016fb86e31", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:37dcb647-93a4-59d1-94ae-b77525c0ef64", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9747122d-f393-50a1-ae78-35206e9b8e79", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e3807baa-f13b-5897-8470-22d9b592ceb2", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:56758382-fa55-5e07-a665-11f2b3cb4e8d", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:15bd2fc3-1bf2-59cf-a84d-aa7d76d04f15", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f11fca36-47df-5cab-b001-dfcd6456d4d8", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:02dfd27a-d17c-593e-95d2-56e8f10e1ce7", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:87e0ac39-536f-51a8-b52b-c01fc54f345e", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:41bb0057-219b-5c3b-8b08-de0f8bd980bb", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e8c09e1c-08c0-568d-a861-981258fa932f", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f0c6dd8f-0aa1-530b-b8dd-89f6b24869eb", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:376e50b3-a7e0-5406-b361-7ff3a5e6d770", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1e155eb2-3b7b-5ef9-8fd0-9237616dd5bd", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4ab7cbd6-ddb3-5ffb-a13c-db1a44779fa3", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3ca3f10e-6a0d-5b9a-b91f-1eca4655aa1c", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:01981421-4c77-5b3e-9129-33f2f897f88d", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f460539a-870e-509f-90c4-8acde77eadfe", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-rs-client 3.5.11-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5593fd6b-49b7-5e43-b43a-4146f5f13eca", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f086889b-0adb-5563-9f84-f0dfa1c2d3de", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-rt-rs-client 3.5.11-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1d3063a0-a2d9-5598-bcd2-d43c014c4c98", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:272457cb-040f-58ca-b174-f932a7bc4eb0", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-rs-client 3.5.11-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:803519eb-e1eb-5edf-9c6e-746b9f984054", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1241da08-ee34-5f5e-9023-3e91a83e473b", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.2" } ] }