{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:1f72c3e3-a25f-51ef-aa56-e8d4f450fe9f", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.2", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-rs-extension-reactivestreams", "version": "3.5.11-tuxcare.2", "purl": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:cbdcde5c-50a9-5b50-827f-ef69188f1471", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-reactivestreams." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ff9cc6a6-4937-5750-9bad-2833fb7357c7", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-reactivestreams." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ad4ffa10-16f1-5d7f-bde2-5138e5363c45", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-reactivestreams." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ed201e8d-2c49-56cb-8fdd-6ff3eea6040c", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-reactivestreams." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8a3c3a17-171c-5525-8b42-85ec20c39689", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-reactivestreams." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6b2246ec-a971-5f39-aca2-b621fd695d8e", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-reactivestreams." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:93344626-46a6-5704-ad94-fdd623312827", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-reactivestreams." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7469328c-67bd-5eea-ab61-5dddf0b56379", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-reactivestreams." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:55578c9e-4618-5882-b7fc-dc9b8b8968bb", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-reactivestreams." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5b143e5d-e1d6-5d4e-afcb-563f49b86319", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-reactivestreams." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f77132b4-b0a2-5750-bf4f-5ca700ee74d8", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-reactivestreams." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7df64ccd-672f-5dc3-9ed1-51a1f9c28483", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-reactivestreams." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4411f0e3-7c6c-5e26-a5fc-f8e915c0fb18", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-reactivestreams." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:83641a7b-889f-5c29-9138-db5df09484a9", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-reactivestreams." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6c56ce62-e621-5e7f-b32e-66c5749449ea", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-reactivestreams." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:411a19dd-45b5-5460-b9eb-ffdb7c1b1280", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-reactivestreams." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:36e9dda4-22b7-52ea-b1bf-cb228dadb599", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-reactivestreams." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e85eafff-8313-50fc-ad8d-978f9035e95f", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-reactivestreams." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:68b9b62f-b1db-5e35-96f7-eeb36d82e954", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-reactivestreams." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:971e8145-bf16-5f7c-989f-b07391464b35", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-reactivestreams." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:737b5563-c93d-5b30-a8bc-1e0f9b09bdef", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-reactivestreams." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1b289e49-d071-59e3-bb39-c640a43436ab", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-reactivestreams." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3aae7ea7-cb7d-5992-9e10-387479172380", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-reactivestreams." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d5dbd25c-0861-5ef9-9212-20af65f58d4f", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-reactivestreams." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5c9188e8-c06f-5d83-a6ea-a6f13bc4afba", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-reactivestreams." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ffd1e666-504c-5f3f-af91-0c9f93b2c92f", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-rs-extension-reactivestreams 3.5.11-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7c48c971-773c-5026-9521-62cf549b8054", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-reactivestreams." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ccf99f4e-92b6-5898-8b5b-bc60fa0fa33a", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-rt-rs-extension-reactivestreams 3.5.11-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a7310dd8-655a-5d43-be10-5d9443f87e71", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-reactivestreams." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ac90b629-5a01-5c16-9e48-cf72001df49b", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-rs-extension-reactivestreams 3.5.11-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:45616569-dfad-5faf-b3dc-49f1d54c3729", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-reactivestreams." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3394bc84-d078-5166-b5ad-6e195aa80d37", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-reactivestreams." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactivestreams@3.5.11-tuxcare.2" } ] }