{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:b6bdbe5d-3615-54bb-95a7-72dd36623a81", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.6", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-rs-extension-rx2", "version": "3.5.11-tuxcare.6", "purl": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.6" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:358b656f-82ed-57d8-a537-97efae380794", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:4d5aa914-70a0-5611-ad93-62cd73585e32", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:c96ae249-5479-5ded-917c-ee5aa8067898", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:f6473a46-3da4-502e-b8ff-f8e41b940d6b", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:77da9f3c-7b53-5e35-a0cd-afe76a7a8274", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:3436cf0e-0159-58a5-8660-4e5736545357", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:10a73597-9283-5d1d-b99e-6c0d505e8d32", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:6a1c5597-baea-59c6-8dca-898bb58234a6", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:8c0030f9-6c56-5cf7-88c8-bffc22dc3f23", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:32d8a557-a715-5418-bf69-766fb6f533bd", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:1fdb76f4-bcfe-5d9b-8c63-6c74dd229668", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:7e5d5311-6c42-5daf-99e4-c3e8da24fb57", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:457d0f5a-6e51-5470-98e7-a22b46542826", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:b2030930-2bb5-5f08-9193-a79fadbf0239", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:7c7ea932-c29d-5775-8a68-34776b833b0f", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:e8dfdb90-6d76-5ce2-b5b1-ad3038732288", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:cdf99a29-8609-540e-956d-1a5442e6f79b", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:ad02f61b-36bb-570d-823b-bea048058758", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:39647c25-df9b-5885-be6f-28b058e4bf1e", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:112ce8a4-251f-5fc3-8e17-17ed7df52b48", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:53e59218-4130-5269-95ee-09afbd619137", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:f623d9fc-5336-50c3-af36-e4b94cfa23a8", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:1974b5e6-c929-53c0-aa3b-40db8e5dcd46", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:8a470c8c-b97a-53bd-857a-544ea964c270", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:49348ce9-f5ad-55e5-9334-4d58a220affe", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:ba060c80-f275-5796-998b-5493f19984d6", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-rs-extension-rx2 3.5.11-tuxcare.6." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:dd6b7784-5afc-50ec-9c9d-de0c3531ef53", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:b8251a6a-14d1-57eb-a310-fe63f0c8a921", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-rt-rs-extension-rx2 3.5.11-tuxcare.6." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:cf8b0d4e-cd1e-562c-b5c5-536261c85e37", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:4f87424a-969c-5a27-a754-209dc786bbd4", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-rs-extension-rx2 3.5.11-tuxcare.6." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:73c6288d-d7d5-580b-b359-8a57890468f1", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:4f48249e-1ef7-50eb-80a7-70dbfc188c10", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-rt-rs-extension-rx2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.6" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-rx2@3.5.11-tuxcare.6" } ] }