{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:ae20927e-f420-5469-a976-94c4683e5c52", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.2", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-rs-extension-rx2", "version": "3.5.11-tuxcare.2", "purl": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:bd3efd34-0d07-59b0-90ab-46f5f47ac513", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:db707568-0a80-5ff1-800b-337f0993ae8d", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:552f21da-5086-5c94-9347-3d708501294b", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0dbefb6d-0227-571b-aba7-44769f082315", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b6fc69ad-1d31-5ea9-aee1-89aafd0c59b7", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3b01cb9a-b43b-5325-9b0a-2a082b37c443", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:661b81a2-a863-5156-9a82-720466a8d05d", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:eb6ce496-e557-5da0-860e-8de003cc1657", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fcf97081-bb7f-5129-9062-39131eecdfb6", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:08d28777-2473-50d5-8cd0-022997c5402e", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:612c3e55-913e-532f-9dd7-baa63c38baa5", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5d78e71b-ce09-5973-ac5f-d3cefe5610aa", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cc8bec0d-ef1c-50fd-9330-84f48ff2d00c", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d168ded7-5191-5bf0-ba56-f657479b1783", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:40e3c349-b3c2-57d4-ae78-2661ce229eb4", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b5c06a64-48ab-59ca-8908-b0f166af75f0", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f6e617f8-e8c8-5f8a-a083-eaa49e8c775d", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cd64d974-98f7-556f-bfcc-de0254278486", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a83e921e-d961-58d1-972d-a891832a70d4", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:38da8f10-c567-542e-a067-9d28765be284", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0c6ec9f4-ff26-59b0-b1e2-fd15bea28e8f", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3933ce73-aafa-5b44-aba1-f852fcdc9b88", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8c2a4c16-9223-5b07-a85e-827ab4d4c44a", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f9e1e6ca-b155-57e2-b433-dc5ef9a6f1ac", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f3a995cd-b534-5890-8853-cbc48e0176a3", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:441700c4-5041-5418-a55d-2873508dc4db", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-rs-extension-rx2 3.5.11-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b7ee347f-c7fc-5dc9-89cb-74396f5fe401", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0b50e671-9491-54ff-836c-48accc703d74", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-rt-rs-extension-rx2 3.5.11-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f2e5eae0-2e5a-528d-a29e-19260fdd97d8", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:efbc5ea1-365d-52f6-880f-fad7b25e16e3", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-rs-extension-rx2 3.5.11-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:82228499-56a3-5fbe-bc0e-d66e208d2b01", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f44028db-c938-58c3-b5df-ae994ae13dd8", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.2" } ] }