{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:fb22ed8c-e0a5-58da-9fce-45c869bcc91c", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactor@3.5.11-tuxcare.4", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-rs-extension-reactor", "version": "3.5.11-tuxcare.4", "purl": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactor@3.5.11-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:a55d9675-146d-538e-a712-b4843332ba1b", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-reactor." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactor@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d8395891-0f5e-5e51-9edd-422b75223629", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-reactor." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactor@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:eb6fc1de-5867-5291-901f-77df3e4ff015", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-reactor." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactor@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ddc4873b-1ec3-561e-83cb-59dd27a23da1", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-reactor." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactor@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:24b8aa2b-a592-5657-af28-72ff42a69e33", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-reactor." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactor@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:95242a24-a9d2-50b2-83d8-4bf7dfeffdd9", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-reactor." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactor@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:6216c60c-f718-5354-9464-4bb08f7d24e6", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-reactor." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactor@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:02fd6b18-c4a4-5f51-bd86-a85712a2463f", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-reactor." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactor@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2e706951-5a43-55a8-9e1d-9c9f361ad4ae", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-reactor." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactor@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:06f24cea-f123-5fac-9d4f-e4616dea3d82", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-reactor." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactor@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:06719a34-98e3-5edc-ac60-ff90da02b7d8", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-reactor." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactor@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:368b1f0c-8ae7-5859-99b3-a39b3d0747ea", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-reactor." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactor@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:6e307f53-aeae-5e5c-9f41-197c98f2e37a", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-reactor." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactor@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:68b07719-8579-503e-b157-71458aa8eb14", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-reactor." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactor@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c8b977a8-5d8f-5b6a-8f98-03e760f05ffd", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-reactor." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactor@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3a4fc5c9-2a52-5a72-b08b-e1310d46f3b8", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-reactor." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactor@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c3124292-db85-563a-bddc-5b2612d31fb1", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-reactor." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactor@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:934ad35f-4bb1-515c-ac23-a3805b760edc", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-reactor." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactor@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:bfb7862b-a734-5618-8b9c-c7100e225ada", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-reactor." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactor@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d2130039-2a7e-5a13-8e50-2bdd19de66eb", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-reactor." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactor@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:cf5a425f-e2a5-5472-bf35-23b8b58fc9b9", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-reactor." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactor@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b1802392-8913-5494-b4e2-815804777886", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-reactor." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactor@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:9c9fdd28-d430-5675-a820-e902932c3585", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-reactor." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactor@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:1fa3ff04-e9f1-57a9-a138-aaaa7d6764c8", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-reactor." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactor@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:1f86bf4b-b0a8-562c-82a6-e1335d5ee69a", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-reactor." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactor@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:5c215850-fc16-5715-a015-f4bc87606659", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-rs-extension-reactor 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactor@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c561d215-cd63-5d4e-b0f2-72e9c47544ed", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-reactor." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactor@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:80a820e4-e170-510d-b929-a93db8cf5d1c", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-rt-rs-extension-reactor 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactor@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:78c201b0-d3ea-5313-ac14-02e40bba46e2", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-reactor." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactor@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:26b8a22b-d59d-5e14-8c71-fcf5a75fbf7a", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-rs-extension-reactor 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactor@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c8777a50-5b0b-5d21-894c-820c4fb555e5", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-reactor." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactor@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3750cf60-bbd6-5dcb-bd88-5dd029a197ef", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-reactor." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactor@3.5.11-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-reactor@3.5.11-tuxcare.4" } ] }