{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:a88e73d1-7c1a-587d-9ed3-bedc89c5064f", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.11-tuxcare.3", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-rs-mp-client", "version": "3.5.11-tuxcare.3", "purl": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.11-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:21e0fedf-963c-52f9-94f8-6eff05c72876", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-rs-mp-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1bfce5e2-b092-5730-b0cd-06aae9212f13", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-rs-mp-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:dd6eff7a-541e-5b4f-b4d9-12650506c4ef", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-rs-mp-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6f65207c-91f1-5729-bb17-1497f6ebd110", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-rs-mp-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9af040c3-e9fb-5668-a894-b63ec996f76f", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-rs-mp-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:69b3ed6e-4a8e-543d-93ec-d94ebbe6ba9d", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-rs-mp-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3adf53b4-e43d-5423-9ce5-2e55ef489fae", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-rs-mp-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:124901d1-482a-5376-a0cf-7ebb424f2810", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-rs-mp-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:19230d2e-1510-58ba-b042-c0ef38f9e661", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-rs-mp-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5bbca62d-d2e0-56da-b361-2eb74fbc0cd0", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-rs-mp-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a12737ec-741a-5cb9-9806-8af7bc270242", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-rs-mp-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ea531f2b-21ce-5806-bbeb-fc330cf0e820", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-rs-mp-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2624a97e-1845-5ea7-abae-8d18d1ed2b2d", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-rs-mp-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:65063095-63a2-5036-9dba-d976645aff22", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-rs-mp-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:85de7690-3a14-54db-868f-b7486a4b4cef", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-rs-mp-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a3393a4b-81c2-5481-9216-47fa85a501a4", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-rs-mp-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8f6c644d-fc4a-51ea-9012-f559034e9487", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-rs-mp-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f0bc2f14-f1d0-51b3-a5c2-cfb8cfe84f58", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-rs-mp-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c3d19d49-03e7-58b8-827f-c825041a0ce6", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-rs-mp-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1c7bbf49-1207-526c-84d7-1bb9560a448b", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-rs-mp-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a1531fda-21d6-5e11-b075-bed32e689970", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-rs-mp-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:933e4b84-6e44-5553-b158-1002ed50ff85", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-rs-mp-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6b797b00-e0da-5b7c-9051-4e19895688a7", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-rs-mp-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f45baa0a-a97c-5b5d-b81c-1ce58f8566a4", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-rs-mp-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e43fdb9e-59ae-5828-be7f-a059031cf3ad", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-rs-mp-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3a55bc1c-1385-56ae-844e-03178169ed87", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-rs-mp-client 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7ec860e0-6996-5d9a-92e6-6faa326c9d44", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-rs-mp-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:65f37466-dae5-51b0-9356-2c5f4b032917", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-rt-rs-mp-client 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6e9705d5-222c-5326-b4f5-2c07b07ba917", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-rs-mp-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:032163a8-41b9-52ba-8562-bdbf2501f314", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-rs-mp-client 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:efad2570-970a-5060-907a-c2c225dda468", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-rs-mp-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:95bc5431-d86d-52c9-b4e6-9cc941298290", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-rs-mp-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.11-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.11-tuxcare.3" } ] }