{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:d66bbb9c-198e-536a-ad3a-8e158b4e1b9a", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.6", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-rs-extension-providers", "version": "3.5.11-tuxcare.6", "purl": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.6" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:e73ce4ca-c8be-52c7-a7ba-209b9c070b97", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:650c2b93-ce57-5f4c-93b7-f7d7fe38fe9f", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:5d2b0673-b6fb-5a55-8214-161ddc7b4cc2", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:ee329b04-343a-5e6f-a6bf-d8e356991d01", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:028f05de-9c5d-52e7-9f68-060bc07da66d", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:cea7d643-e40d-58d7-afec-9d81d9809460", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:d9748b23-5b44-55e3-bdf0-f85fea01bfba", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:f7f91ab5-5fc8-5fec-868c-fdc3fb0e0bee", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:f03d5d0b-892b-58d8-9392-dc7dfe46b20b", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:3a3701cc-8c89-5f46-be92-de5a50b177b9", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:fecfe04f-d178-59b6-ae9b-c1ace2fe3ccb", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:3aede0f1-0b16-5012-9842-7b7cd8cbeec5", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:4b901d4a-2b44-57ea-bb10-63857a478790", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:9c723ba8-3777-50d3-a195-0df2c7708cfe", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:7be6d509-a0e9-59a3-a731-a393d5612374", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:469b56ad-c726-5308-96ec-b71a613ea1fe", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:2a9d5479-c29a-57de-b02e-7be82d7bf9ab", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:83cdb497-cb5d-5719-8a9c-aad09ddcc1f7", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:92957c9c-9f51-534a-8127-ecb35f888972", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:b985157a-e8a3-5312-b5c1-4f4d1a9ed9b8", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:994b66bb-8617-526e-b8f9-723a554b9910", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:a504450d-d59c-5b10-aa4a-e445535b9ad1", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:b610f8d8-e661-5c48-8e72-5d9162a22fc9", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:35dd0cc7-5d1f-5b1d-ba6d-b8e0ae543240", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:2f3d7a7d-2951-5bcf-be60-d7085a2b66ea", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:4a92ca58-74dd-5dbf-99aa-509cedbbd5aa", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-rs-extension-providers 3.5.11-tuxcare.6." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:97bc18d7-6e86-5e6a-b197-20b4d565eb28", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:05425707-6576-5d26-b3f2-c86ae8416019", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-rt-rs-extension-providers 3.5.11-tuxcare.6." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:d91a2332-8ad0-572a-b8ca-f089b41150fb", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:f2d60d97-d761-5460-bff6-f45647caefc5", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-rs-extension-providers 3.5.11-tuxcare.6." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:51928bc6-58ff-5a28-aefa-57cc36633f5d", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:0ce362f9-874e-5316-9d56-3c810375a294", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.6" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.6" } ] }