{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:8d331528-a220-51af-8ad3-f2aa974c4924", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.11-tuxcare.3", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-rs-service-description-swagger-ui", "version": "3.5.11-tuxcare.3", "purl": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.11-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:1e75c839-016f-5ee0-9b52-d7e4d029773c", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:66b27ed6-594a-55dd-a01d-ad6f6fef64b8", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:981ba9df-7af6-5144-8216-7758c834324f", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7c341098-c895-513e-b1f7-ed0bdaf5bb17", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:75e40535-1503-5d71-ad01-6ef9337ff87d", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:74c223a3-eaf0-53da-b3e2-5be5ec323e4c", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f151248f-a6a2-5d0f-8867-711c5d5ca94d", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a488e403-59de-5c8a-99e0-5f3c417415ea", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7db84f00-6f6f-5f6e-9da1-0abbb4a6fc69", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bb200fde-eae5-59bc-b794-d407a4d4cdcd", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3d6f9edd-505f-5422-bdd4-e5b801f41522", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c75b1526-839f-5953-9ceb-bdfdf3fe6a07", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d2fb46bb-2a34-5571-bd7b-dde12c3737a9", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c0bbd0ed-2a13-5cf3-8450-246e8e9fb354", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f49a9df4-f54c-5189-8d34-1c3df9fb8e0b", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6c0b5944-e5a8-5156-b5ce-817288135c14", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b3128580-0ba6-58fa-910a-ba17f01628ff", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2543d1db-5574-5d4a-bf63-08c1c34e531a", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:66b83719-1f99-5ba6-92b2-eec3b79a8b72", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c863effc-3482-58fe-a7b5-aaed4cc4294d", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7556c3d3-97cd-59b0-bb03-566d24f8df07", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d017bc00-8e03-5764-9130-5cd1ad0038f3", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1ff1b25f-4432-52e7-a6bb-3ba0d68608af", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5db19b81-cd88-5caa-83be-2d61f731cbe8", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:93b241c9-199e-5a34-b9c7-e89beeefba75", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:56221b14-9420-5e55-a07b-58d9040d3678", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-rs-service-description-swagger-ui 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b3586402-63b5-5dda-a745-f5397896f6ed", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2626b309-9fb4-5632-a0b4-9d5a8e2c551f", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-rt-rs-service-description-swagger-ui 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b9c1ea27-5b53-5b65-97cd-ab923d2e2ef6", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:53eb804d-01fc-5a46-bee4-801245ad0b55", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-rs-service-description-swagger-ui 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fc8d6d02-86ac-5c08-8dff-ad61b584ec41", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b9f7dd56-14d7-53ce-b898-c6c5f0dcff3a", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.11-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.11-tuxcare.3" } ] }