{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:385ccbf8-e2ae-55c3-ba01-126b5778640a", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.1", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-rs-extension-reactivestreams", "version": "3.5.11-tuxcare.1", "purl": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:52cb79fb-e87c-5ec0-a5b8-3ea5d407f75c", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-rs-extension-reactivestreams." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b47c113b-8c96-5fcc-9626-af23105a803e", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-rs-extension-reactivestreams." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:16c6b29f-7bed-5f8e-a0e2-131b338af115", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-rs-extension-reactivestreams." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4f9710ff-17f1-5001-9605-8085a601faa9", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-rs-extension-reactivestreams." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:93fb16fc-c5cb-5250-954c-24e62d7b44dc", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-rs-extension-reactivestreams." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d3805a90-2eb2-5185-aae3-183f37410e03", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-rs-extension-reactivestreams." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6c706ba0-e6db-500f-845a-28ee16ca1136", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-rs-extension-reactivestreams." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f0301552-04e2-5474-879b-3614c85edf89", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-rs-extension-reactivestreams." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:804e32c0-35a5-57ee-9341-6183da8c9a3c", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-rs-extension-reactivestreams." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e7fa50fa-6d24-5969-8d09-a841629e3b62", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-rs-extension-reactivestreams." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a08f7c69-b6eb-57bf-beee-e8f9a0c3b1f8", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-rs-extension-reactivestreams." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:905ea4ec-0d09-5d74-b214-8d3479d22cf8", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-rs-extension-reactivestreams." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e4c9fd93-443a-5099-bde9-7e1e5a437706", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-rs-extension-reactivestreams." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f5988d75-2af7-52f1-bacc-2ee895e37302", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-rs-extension-reactivestreams." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:da83b5df-8707-5353-a621-28a9ae225bfe", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-rs-extension-reactivestreams." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d51b784f-b764-5e7a-815f-17798714bd6e", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-rs-extension-reactivestreams." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:eba51566-2dfb-5554-ad78-3f3f6261244e", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-rs-extension-reactivestreams." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f14d0fa5-f4d9-56b9-8fc3-88b07ab4c57f", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-rs-extension-reactivestreams." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:08f5191b-1c12-5fc4-af85-fd4cfb2f89f4", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-rs-extension-reactivestreams." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0fcb2ed1-037a-5476-a290-e5652cf956a1", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-rs-extension-reactivestreams." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4ca21526-149b-5610-9993-a43e24a118d0", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-rs-extension-reactivestreams." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fcfd21e3-8098-5575-9bdc-a7222ecb78ea", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-rs-extension-reactivestreams." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:345c99bb-1e7e-5982-a5b5-a4035d972b4c", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-rs-extension-reactivestreams." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fede50b0-cd50-5d2a-a133-d82e9480a0e7", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-rs-extension-reactivestreams." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:919daea0-b3f1-548c-8c20-64506b0bba49", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-rs-extension-reactivestreams." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ac50d702-e8b4-5243-9127-10d37f32240e", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-rs-extension-reactivestreams 3.5.11-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f12244cf-143c-59fe-b828-a3141cdb8ed0", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-rs-extension-reactivestreams." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:424a3745-a526-5768-8b98-47146bdef7ab", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-rt-rs-extension-reactivestreams 3.5.11-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:da5a6233-a78b-5aec-b307-a9e9000d968a", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-rs-extension-reactivestreams." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c7932eb9-9cae-55b2-95ce-4568c0119934", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-rs-extension-reactivestreams 3.5.11-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:42894ded-ee09-59ff-86ef-a3c7de394db2", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-rs-extension-reactivestreams." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:01f2ab0b-6b45-57d1-86f5-b68f6bbd8463", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-rs-extension-reactivestreams." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.1" } ] }