{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:8bd94f69-1c48-5395-9032-e59617629e3a", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-http-hc5@3.5.11-tuxcare.5", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-transports-http-hc5", "version": "3.5.11-tuxcare.5", "purl": "pkg:maven/org.apache.cxf/cxf-rt-transports-http-hc5@3.5.11-tuxcare.5" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:10cd1073-13e4-5ec5-9714-3fef0ca67974", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-transports-http-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-http-hc5@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:1fe270b6-057d-5175-b0d6-2ea696384e76", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-transports-http-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-http-hc5@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:b6fb850a-90d4-5165-84b1-56cef2466d92", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-transports-http-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-http-hc5@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:49640ba7-f0e5-51ef-b9eb-53c412d5d506", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-transports-http-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-http-hc5@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:2e6bb701-7c68-5054-bb38-605c28adfe73", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-transports-http-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-http-hc5@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:b25355be-1b8c-5fe0-8249-e6dd5018eae8", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-transports-http-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-http-hc5@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:594c1330-3cfb-5d5c-a8b3-de00895a2ead", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-transports-http-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-http-hc5@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:9938da8a-d648-5321-aa09-567cd3f1f0d3", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-transports-http-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-http-hc5@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:e2cb0a3a-1e24-528d-a3ed-4e5b828d125b", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-transports-http-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-http-hc5@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:1b24a0ed-663b-5e0c-8e6c-cde65f011b27", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-transports-http-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-http-hc5@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:56856853-1889-5e2d-aae2-9d383ed53bb0", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-transports-http-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-http-hc5@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:0c026ffa-6d63-5df2-a91d-60804215c728", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-transports-http-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-http-hc5@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:fb598418-e97a-5798-921a-7354a74a992a", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-transports-http-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-http-hc5@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:d7a2935b-fb2f-5202-8bc4-7c59f9dcc473", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-transports-http-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-http-hc5@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:61de54c9-79ea-52f1-bdd2-f2620ec3a265", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-transports-http-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-http-hc5@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:fdcc5164-44d7-5409-a344-c7a97ab1d696", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-transports-http-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-http-hc5@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:d3c7f8cd-d47c-5b13-bea1-e0286460d97e", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-transports-http-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-http-hc5@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:666fcba9-444d-5eb5-946d-6253a59b2204", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-transports-http-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-http-hc5@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:db97665d-f8bf-5515-8c06-26482817fd34", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-transports-http-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-http-hc5@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:7ff7f2c8-e0e1-5117-a40d-787d1d6441bd", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-transports-http-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-http-hc5@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:51b126aa-f1fe-576f-af4e-bcb0fb371560", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-transports-http-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-http-hc5@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:77560222-e551-5419-880e-7081d6e2fa43", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-transports-http-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-http-hc5@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:faad5876-ca2d-5045-8bbf-041a8358df9e", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-transports-http-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-http-hc5@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:3b7aa823-d107-502e-a432-49a3862aa37e", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-transports-http-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-http-hc5@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:b99c575a-e5c9-540a-8018-23771d646a78", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-transports-http-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-http-hc5@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:6d24bbb5-97d2-5ab9-a90e-be13072e5433", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-transports-http-hc5 3.5.11-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-http-hc5@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:1e55aad3-88dc-53f1-a8a9-e81db0529749", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-transports-http-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-http-hc5@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:9fba22b4-6c7c-5d07-8bae-4a6267adc550", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-rt-transports-http-hc5 3.5.11-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-http-hc5@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:46c7d9db-dd4c-5483-abc1-af6d4f4f174f", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-transports-http-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-http-hc5@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:0eee754d-c4a9-5f38-afc3-3e9f74943b83", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-transports-http-hc5 3.5.11-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-http-hc5@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:e706776a-ed3f-5ac5-a230-693a2a486607", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-transports-http-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-http-hc5@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:82860b8f-ec88-5c8d-b6d4-55af35dc4499", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-transports-http-hc5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-http-hc5@3.5.11-tuxcare.5" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-http-hc5@3.5.11-tuxcare.5" } ] }