{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:53c5d33b-26bd-5a84-be56-b0556ff1e412", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger@3.5.11-tuxcare.4", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-rs-service-description-swagger", "version": "3.5.11-tuxcare.4", "purl": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger@3.5.11-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:8f193eaa-ebdf-5822-8edf-37eef27880c7", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-service-description-swagger." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:6e995057-bd5c-580a-84d0-d218739eb38b", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-service-description-swagger." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:af5c8de1-d3e9-5386-93cc-ba9cf093c1ce", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-service-description-swagger." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8bbccff2-ac0d-592e-ac5f-437b5ac71573", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-service-description-swagger." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:452ede8c-254b-5b73-8048-3bc84349f4c8", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-service-description-swagger." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:356e43db-5619-5691-bd54-6001287a22d2", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-service-description-swagger." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:62f72a0b-8155-561d-b87a-2c0eedce67c8", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-service-description-swagger." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ba58a939-1b4a-5071-8c6e-c583380e731e", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-service-description-swagger." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:11d7ca96-efb7-5940-8f5a-ec6137d925e6", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-service-description-swagger." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:1a58b192-8670-50e0-abfa-9cabd0919360", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-service-description-swagger." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:078c449f-794d-5217-95b7-842ce5c13c30", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-service-description-swagger." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:72ea42d1-85e3-5dc7-80db-23ea7ba0f22a", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-service-description-swagger." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:626f7ef4-29b3-5250-a724-da8da7d7aab8", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-service-description-swagger." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:23951ae3-2c72-506b-bbfd-826492a933e2", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-service-description-swagger." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:fc1f02f6-79dc-5a84-8d18-f9e350f4aea6", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-service-description-swagger." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:35f55f42-222c-5a13-ae42-c9420f5d66a8", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-service-description-swagger." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:9bee2c93-5f90-53b8-9cb5-95fbf5407422", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-service-description-swagger." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a0c276f6-049c-53a0-9311-e44c8bb6bb1b", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-service-description-swagger." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2462738a-5b1c-5c3f-a961-744d64c7d069", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-service-description-swagger." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:384ee24c-a1ac-5816-8948-feec72abfc60", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-service-description-swagger." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8221bcea-93d7-513b-8574-e1a1c59702d1", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-service-description-swagger." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4c64aa20-7f7e-5a07-9c01-bc87b64297ce", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-service-description-swagger." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:83c8bfb5-05d4-5a36-a3f9-bfebd5d1dc20", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-service-description-swagger." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ad8bb1f1-d998-5455-bc2f-cfbc4f6a6ef1", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-service-description-swagger." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ca58240d-c439-5cca-8b81-56c17ddaeae2", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-service-description-swagger." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:9b2e2993-ba5b-5a89-a863-abd3ff434813", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-rs-service-description-swagger 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:cea80076-36c9-5aed-a51a-53af05084321", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-service-description-swagger." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:23f9ef87-389e-5d13-89a9-22e26b35ab4e", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-rt-rs-service-description-swagger 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:409f2a3b-0bb1-5bbd-8a8a-cca4a1e60ec5", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-service-description-swagger." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4fe68b5c-1361-59e8-a526-4e05fa712211", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-rs-service-description-swagger 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:39fc6d5e-cfb7-5565-8db1-22c34d42a45a", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-service-description-swagger." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:6fe43a94-48ca-58e1-8c36-cd2781242742", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-rs-service-description-swagger." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger@3.5.11-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-service-description-swagger@3.5.11-tuxcare.4" } ] }