{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:bf95c76b-15f9-5a30-a509-28b97b0efe2f", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.4", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-rs-extension-rx2", "version": "3.5.11-tuxcare.4", "purl": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:36837a37-91e1-5e97-824a-0badebc12749", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d1f8f499-0912-58e3-9511-facfeb663059", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:5102965f-23d8-541d-aed9-fae3ca95625a", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:1b182705-e99a-5b98-a363-d414495ccb34", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:587f1ff7-3882-509e-9948-af6979aab4b6", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:328a5bff-3a5e-543e-9948-8d29f8253fa1", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b10808c6-81b7-5891-8387-77b7617b5455", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:1fc11b89-7aca-5912-b633-28ee71e23ca8", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ab78c8bf-64a2-5575-933f-07820947c646", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7db18d00-f814-5bdd-ad96-39ced80245fb", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a6b70947-4fb2-5886-a4f2-481d395aa49e", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:086e697d-03cf-5e66-a2c2-0789f98521b8", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:97434d3e-6477-5395-8b82-8b39502bd6ec", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3785e39d-e0a8-5da3-ae47-77b536282beb", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3fc09cf6-3a27-583b-9824-7abca8ac2b59", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a5a5afde-6950-5ea7-a1a7-b019d387cd52", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:16398b37-5b8e-565c-9433-db36e8b941ff", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:380905f3-0763-5e76-959d-9bbe289bd19d", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d9aa12e4-5f3b-5c7a-9ff7-3d1a64bf39c8", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b208cc75-29e3-561a-aaa4-1d442d42b8ed", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4322b3b6-fd5a-5ac5-be0e-18244b5aa464", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2786be99-6190-572a-a958-f557f7e30868", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c5a96e45-cb56-5a3d-9b52-c4b9fc137a34", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:5dae1a5c-ce5a-5f3b-ade8-4b9737aa99c5", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3671751d-c2c8-5c9c-acc5-ad1cdc228247", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:31d47cd0-5bba-5b64-9a75-e5a2a4f10494", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-rs-extension-rx2 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b40dd45d-59a2-5e23-ab99-8d205c0cb2fe", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3b0cce76-0e8f-5161-bb77-3b6b05a98ea3", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-rt-rs-extension-rx2 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:27cd82f7-881e-55f4-a64a-df5d60c9c9cd", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:cb71b7fd-ff88-5115-b6ea-baedf7b8315c", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-rs-extension-rx2 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3c2b2ff4-103d-5b11-abfa-3a9454de8ed2", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8efe13a7-13bf-5560-9142-70ad21d9e8c1", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.4" } ] }