{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:fccc23b7-c612-5ec6-9a86-7630ed7527a6", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.4", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-rs-extension-rx", "version": "3.5.9-tuxcare.4", "purl": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:ce463ff2-7e21-5c18-86bd-c493f11a29ac", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-rx." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8c7a2c18-23b8-5fd6-a05c-d316bad46bdc", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-rx." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:35af762b-24d9-56df-a395-0ffcf51c87dd", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-rx." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ad995ef2-f120-5cd7-be1f-63ca66609c69", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-rx." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a2c756c3-1023-5e23-a70c-1760a78a65d0", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-rx." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e3c4ae10-6ea0-533d-992b-7c5866104015", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-rx." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b25f0039-2f07-56c3-a058-e8ba6efa6d3e", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-rx." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:9d4d38b6-00e4-5294-92c4-7a15a47dfeae", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-rx." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:1e8998c0-5d52-5c40-9dab-69f6222bf346", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-rx." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2e21ae03-d6cf-525a-b18e-1770dc8985fb", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-rx." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:12dc8a99-265c-5c7a-ad3e-8fdbcddab27a", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-rx." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:04fb3e8c-5de5-523a-b1af-f9d3a5452582", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-rx." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:9d8c6a14-a100-5cf5-8d8a-8f1e28e68afb", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-rx." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f7113309-56c2-5cd7-868b-3e7650fcf3fc", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-rx." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:81aaa85e-b071-541e-8c3e-014560429375", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-rx." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:370ecd31-bad3-56be-ad71-c81926196c03", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-rx." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a65eb33d-7bf0-5e01-a603-d0e6e3fcce53", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf:cxf-rt-rs-extension-rx 3.5.9-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:85a4cf5d-1d73-5420-b681-88cb8c17a43a", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-rx." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ee26806c-1628-5104-8a4e-956b92a48b99", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-rx." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:fa615967-c2c7-5bde-b4f6-c6ceac21b9fd", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-rx." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8290ee3f-d56e-56b8-97cb-8081cda1670a", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-rx." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c5bc7a13-ccf5-56ee-a146-07b99de3aae1", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-rx." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:30849ff0-d26a-53e8-a8ef-7756028ec1d1", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-rx." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:027ba92f-8f53-5ce3-a1dd-46997ed5b721", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-rx." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:1d853cc4-9732-5da8-9983-9d0931926a9d", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-rx." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:bdb7dd49-2452-5641-aa0f-2767ae84ccc3", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-rs-extension-rx 3.5.9-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:47078f7d-8f3b-53c9-85ab-3f11e0ec4be9", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-rx." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:5f371b03-7fd6-5361-a99c-dd13e5dd23f9", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-rx." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:526c2771-dd9e-5fd3-b850-c1f99a9180e3", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-rx." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0f12789c-c0c1-5735-b51f-3fe2f92127e8", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-rs-extension-rx 3.5.9-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:5490585e-b248-52a5-ae23-ad481093fc58", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-rx." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2771202f-dd39-5af6-a1a7-596d6da74171", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-rx." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c819469f-2e22-53f2-8777-c559c7555dea", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-rx." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:480935e0-2cc2-5fe9-9308-f100eb644c97", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-rx." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx@3.5.9-tuxcare.4" } ] }