{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:f33742ca-08b3-5154-822e-6df5c0dce190", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.2", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-rs-service-description-swagger-ui", "version": "3.5.9-tuxcare.2", "purl": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:fdc9ac52-c8e1-5bf6-a025-1cc9e1217678", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:50426b7c-d055-5f3e-a847-1239c8e77e9e", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:97138239-9beb-5d5c-9931-48191e80c36f", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:515f51d9-7536-5775-bd00-4e4b70567811", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:01ea3bb4-a950-554f-86df-f33f8ee06ece", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8060bc05-313e-515f-8801-7e55a9d81518", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d7ad1701-7cbd-572f-b2a9-1132311e26b0", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8e92b6fa-9328-5c12-8f25-b3db8e44c4db", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fae651b1-5709-5d12-b368-c3343f6bc0ff", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e76af0e6-6087-52d5-b740-306026b39e03", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8bda432e-b85a-5c6c-9548-850da29f2f11", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fd1d0264-db82-566e-9ff9-38406e0acbff", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2743f7b7-1c63-5752-a731-7f70a15a89c4", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e1dd0023-cf13-59ff-82c6-0ccdb49c3d98", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b977c09b-0dab-5624-93da-24897d00566e", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:243299d4-8cc9-507c-8480-2984c363ba0c", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c43d4c76-2cba-5cf4-add0-efbc1839d809", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf:cxf-rt-rs-service-description-swagger-ui 3.5.9-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3e517e1d-a406-52c4-8f0d-bfd56091b2bf", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5d0917c3-1f30-5b02-b269-73c73d076527", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3073b21d-b22c-5bac-af02-e84413a83918", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e1c4f089-4ec2-5876-9211-f59c210cf459", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c6b146a5-3fbe-55af-9545-2aa1e3e8aa3e", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:54780bf4-b699-5347-9771-5a9a03c964b1", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2decf38d-5c70-5a8f-a8fd-ebdc5391bb5e", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d07871cb-c62c-5704-bdda-940bad40b9eb", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3d9545d0-71ef-5fac-9ccd-7612f53fdf81", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-rs-service-description-swagger-ui 3.5.9-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e3588121-0e00-5f1e-b540-0b050de4ce4c", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:71d8039f-ef8f-5c15-85ac-3a60392f6c05", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5d28a99e-aae2-5e4a-9d11-7d2a0f3ac632", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e98e5789-45e5-583d-b2ea-44a70966e16a", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-rs-service-description-swagger-ui 3.5.9-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ba631293-2678-56a1-a0cc-3b383478b4bd", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bfd471df-1d2a-5ae3-9c43-f3f1bf88e6d1", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e7aca392-a5a9-5ef7-baa4-4ea5c2480329", "id": "CVE-2025-48795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-48795 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5cce0a42-3423-599a-b005-2a2b17fa83db", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.2" } ] }