{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:f6807861-9d4c-5541-bb28-699eee69b822", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.2", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-rs-extension-rx", "version": "3.5.9-tuxcare.2", "purl": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:65bbc989-de79-55b1-b99f-c3746a64ce0f", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-rx." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ea74f5e5-5240-5408-8fab-55af444cb333", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-rx." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:69ab74e4-7940-5ab2-ba2f-59123218caa3", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-rx." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:33a96ee4-d89a-5a1b-8479-79ba2b427f10", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-rx." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0743e596-b434-5c4c-bba2-abfea6ac3ce6", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-rx." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:943dc903-a660-5cf1-a5c6-9eb31aa97ff2", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-rx." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:142b7085-a7d6-5c96-8bb1-90496a38509e", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-rx." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:75c4b21a-965a-5230-86dc-a1d4b119b4ed", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-rx." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:21bd9c7e-88ef-57c4-82fb-f98352cc9ff3", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-rx." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9be41dff-5cec-5171-a4d4-540fb62c808d", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-rx." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c14ce686-51d0-5695-819f-b305bd5ee50f", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-rx." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9d73376a-933b-5622-8fdc-e7e4f17726d5", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-rx." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6f595fa7-fb78-5ae3-b7d2-18748114810a", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-rx." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1b125de1-81cf-55b8-8775-c5b59a449830", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-rx." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f725d3b0-26ea-50e8-8c6c-8159740f59a8", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-rx." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c7a5b19d-f99a-5d3b-9c90-9cb61f149649", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-rx." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a618e1d0-3eaf-5f5f-8f5b-f1fa69fe733a", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf:cxf-rt-rs-extension-rx 3.5.9-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c06c1e18-07ec-54e8-83e0-f1b6152eefeb", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-rx." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4bf8a32f-5c49-505f-a999-21e1bd854524", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-rx." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:55747397-dc13-5405-b2ae-a65b34f5b23f", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-rx." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:24782336-060a-532b-a050-13cf2ed08fea", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-rx." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9a0dbe45-49f0-5976-bfc9-09021ffc633b", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-rx." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:41d17502-1911-5100-8da2-16fb754eea02", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-rx." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8662958c-c1c1-577f-8094-8ccf8b0c0a4c", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-rx." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:60aae118-4273-557d-bd37-305a65afe74a", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-rx." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b48d074a-1430-51fc-8c17-1e985dcac26a", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-rs-extension-rx 3.5.9-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f5492309-82cc-5a73-a2f1-b78e16976706", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-rx." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f93581d8-684a-5755-a485-e3e4e1680a65", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-rx." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d2184bf3-ee66-5853-b45e-e85f847f4e07", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-rx." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:05e0d33c-77a1-5e8b-8f94-d532507d45ca", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-rs-extension-rx 3.5.9-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f4572ac5-5340-5f40-bb7e-78f4a6ea59c6", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-rx." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8b4e1ded-94be-5872-8bfb-38a10696a8ef", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-rx." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:20a6b1aa-08b1-5978-adb6-299ca7abecf7", "id": "CVE-2025-48795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-48795 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-rx." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:851a90a7-2945-5eb2-bd34-95b94c338fa6", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-rx." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.2" } ] }