{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:7a31dc16-b8dd-5de0-a400-a602fdc2be94", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.4", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-rs-service-description-swagger-ui", "version": "3.5.9-tuxcare.4", "purl": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:da66739d-2f30-5113-b94c-171c434bccf6", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d2deb0d2-457a-5299-9012-eec14ef6e1b2", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f8c22793-b829-5e79-a070-f84b921b928d", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e51f0963-3ad2-5dd8-9b0a-4f29e5963d52", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ae10d77f-8fd7-5b91-976a-0111a67b63d2", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7d1386a2-7b01-5e5e-b7eb-00bd75f07022", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a836bb38-b660-5020-887c-d2b0d641aa71", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:6e0d3a75-bc16-5e8d-b8f9-ee081346037f", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a160b9d5-42fa-52e1-8a90-27016628fd39", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b6f0edb0-b3c8-5dd1-a976-aa51844b1ea5", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:010a7f11-132e-5782-a352-003eca161de0", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0fd5cf27-3b1d-534a-8b16-3a339e1b28dd", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7b850630-311e-5ffe-9bc3-7e2173ce7fbb", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e847e17c-7455-5535-a1b9-74ed3553dd16", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:570db971-e564-5367-bca6-f940ea0077cf", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:442d12bb-da4c-5936-b989-45350ace166b", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:27d5ffb7-c567-516a-8060-c99563fef47b", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf:cxf-rt-rs-service-description-swagger-ui 3.5.9-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8d74bf05-c05d-5c79-b721-dacbf2cb065c", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0c8d082b-1c0a-5a66-9162-dbcad2b3d389", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4e99dfbd-f85c-5287-870d-e6411002ce5a", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d2fe19ad-421d-56ff-b2ae-477a4a7ec6c4", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:aef27a6f-5fbb-5e7a-a69a-6a9e4d882ee9", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:71cbb15e-78fa-5b51-9406-94375844872e", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:6b5d4484-4abf-5852-a7b2-53f8766db916", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:99c01122-4ef8-576c-ad89-02ee46aa0f54", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:cd89c0b8-b910-5158-8207-626f04b0db4a", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-rs-service-description-swagger-ui 3.5.9-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:fc95454f-a039-576d-9529-36f76888ef55", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c3281abd-bf10-5d17-99b3-28c14b06ca6e", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:40803bc1-6c78-5291-b8db-334c5047fcf2", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:1b1078c2-886b-5b9c-ad26-6e2145cf6f20", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-rs-service-description-swagger-ui 3.5.9-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7a76fe15-0cfe-5d69-bd63-4e2d289a1567", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:fff1f3ce-4210-58f1-ad63-4f80ee8bf26d", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3c5a9f7a-5c3e-5cbb-8daf-058d1f36d3a4", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:1aec46bc-69a9-541f-8e8b-e731602c7d5f", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-service-description-swagger-ui." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger-ui@3.5.9-tuxcare.4" } ] }