{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:42ae20a1-24c2-5db0-9ed6-f5ffdfaa70f7", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.2", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-rs-sse", "version": "3.5.11-tuxcare.2", "purl": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:7a8395b1-7b9d-5f6f-b5a0-f188cd239f02", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:340b7771-d869-5ee9-a77a-98f8e9bc3b77", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:832effcf-083b-5835-bfa9-a83f0752850e", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:18f03b8c-8faf-5138-a6cd-2b6b79298986", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:319a1b76-042d-57d8-9b56-7f98a7635cad", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cf9240b6-ff82-5f07-880e-387621fe0908", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f685cbe3-395d-58df-a734-979a858e76a2", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7277585e-9e63-5f38-9c5b-ca4e32b51eed", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:57f7d18c-d886-5ff3-a2d9-21582880a74b", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:74162ad4-1cb8-5479-812f-7c6e283856ef", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:99547cb0-a086-5b1c-8f3e-d87bae552d3d", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f691928f-2e2d-58a4-8a4a-5f3cc5a0e453", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f25a3361-3ad4-5f2d-b27d-fee81fc3f151", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:77b2bb3b-dc4a-535a-b8ab-83d6387d6ed7", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:866311cd-33b4-5135-aae6-484ca615f05e", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ffb1c25e-e281-5a8b-9fc5-0389049c1ebf", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ba4d3b43-7445-57c6-9617-73174388d178", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5a1e0b9a-71ca-5c51-99d1-3761cc822567", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:908e0acc-ee29-5a9b-8898-a2e7107128fc", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:685d4c83-9a27-50a4-8065-414fedcbb276", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:21418318-a53d-5a8f-aa2c-e730de9fcb80", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cf12e1fc-4e9a-5e3e-9577-d3a0b5c825c1", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c89697d6-ae63-55d0-a5ba-1aadb0eb2299", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c5e6c0a7-892c-550d-a0e9-d9bb6a025824", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7fb71d60-44da-50b8-8e5b-560cc3870390", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:96771cf1-c434-59ba-a651-a3b71e0dc373", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-rs-sse 3.5.11-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c419b268-c4eb-57c2-9031-3e87226e75bf", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3063da07-fc45-58fb-8a27-6c176dc6ba8b", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-rt-rs-sse 3.5.11-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7f5f874d-23d6-5ca3-bd99-e1e18633edcf", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f0b8505b-fb5e-585b-ac64-9184e3f17c44", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-rs-sse 3.5.11-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4d15c34c-460b-5a57-8dad-1ec925432586", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fbafca1b-4463-5911-b5bc-b06883cdc3eb", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-rt-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.2" } ] }