{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:927cc1bc-42f5-5fd2-a6b1-1c5ca2ce4a1e", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.4", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-rs-client", "version": "3.5.11-tuxcare.4", "purl": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:b4c419a8-8918-5114-96c4-c7ba740daebd", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:98707ad3-cf42-5d74-987a-2a69a18f82fb", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:613ae910-9335-5d0b-ae47-4bf20619a3d3", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:17622609-cb33-5aea-b2e7-94f9c0a7f593", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a76a640e-0720-523b-afbc-5c5a9809198c", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:100d6062-d4bc-5d2d-8935-0924f72a02c0", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:9ee5e30c-8dce-542b-beab-b57f8a562b94", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b8b74f8b-25ba-55a3-b2a7-b0a28b1a91a7", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e1ad5d73-4b15-5958-b9f9-335b03f6a253", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:72cbff0b-a30d-5670-8bf4-8ee07030e776", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:70edd5de-bb6d-5e6d-a2ce-78e480375e55", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c1106c6a-a200-555e-8f69-52713ee3e07a", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:14a47f19-b803-5128-9483-c83071b19ae4", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ee05b545-b89f-530b-b23b-a8dce662c5a4", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b8750c9c-bae0-5788-aa56-c691d2c9678b", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:23d91f3f-00fb-5aa9-8617-6c7211374165", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0127106c-ed5e-50c2-a5d6-4db02e58bcd9", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:37ee5f72-892a-5de2-aab9-aede757d49dc", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:58972975-571d-53a3-9522-1fac1c3b552d", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4bb11120-a956-59d7-904f-7bdfdb1345f9", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:75660423-bf17-5cba-bf9b-fa6071ff15af", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b5b53fa1-cfb1-5d85-b213-e038b5ab5a95", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:51c17cae-613c-5e79-947b-5d17f6fb60fd", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4c3ac0ce-d7b2-56c2-8a7f-2344d996394b", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:310dad1e-88f5-5c41-a121-d4fbaa53b442", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c4a83ca6-4a63-5bfe-942b-db5ca80f52d5", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-rs-client 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3322269d-2570-5ff7-8a9f-34a1b612b7b8", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ae1b478b-5247-5359-b573-096673b90649", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-rt-rs-client 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:6f544693-2037-50f2-ae2b-536feeca4008", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a6c7fbee-fb4a-5503-a9f3-2e48d65d294f", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-rs-client 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:82f36be6-56db-52c9-90ae-4e6ed01c3e76", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a1f45c58-4bfe-5203-a772-f43ec7fcac99", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-client@3.5.11-tuxcare.4" } ] }