{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:a76dd36d-ae64-553d-9fdd-f0766ebe31d0", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.3", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-transports-jms", "version": "3.5.11-tuxcare.3", "purl": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:f2244c6c-befe-5dbc-915a-d392e8fd4a45", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:65fa92af-be24-5ed2-afbf-add6b849387e", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1a7d7b4a-7b49-514f-9a09-a78a5b9c9e3b", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2c729dfd-8b67-53ab-8ace-7dcd52eae5fd", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1480fb0c-e6d6-5a8c-8a6b-3355140e4466", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5719a60b-36a5-5857-ba4c-620aa9e24a2b", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8a020dff-6770-5681-aa05-1f19d9e900db", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a812803f-b1c8-56cb-974e-6c163a291022", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5c8284eb-1a36-5f79-90a3-c497c6e2985a", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a163ab74-5ff9-5774-b705-8b44efb1bab3", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8d4499d8-ff5d-5177-9754-875d035eb85e", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5ea95387-a849-5b1d-8520-ca4bb2dbe7b6", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:59639596-dc71-5abe-b50d-6ed5d88f0606", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:30db4e62-55f3-57fe-9135-3ede690f0dec", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8c1cb684-da28-5a4e-8ec1-83ed0a4923b0", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:899ef8ab-5e0c-5e71-82f0-4f335c3934cd", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:39b52478-42d0-5ee0-8355-83fde7fdc951", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5374c47c-8d09-52c7-8fc2-d14721c866da", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3abaef24-e98f-5c52-b1f2-1d6e395a01e3", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:619a8827-c305-51ff-9093-f58ae68b9108", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0cf119a7-a33a-5693-b21f-812726eddf0d", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b785d9da-84df-591b-b8df-237285272e87", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:11b9ddba-9882-55b4-9109-aa42444ee78e", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8b33cc50-84c0-5cad-9128-a56f79fda034", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5ad9492c-f40f-5b8d-b421-cc7233dee1fc", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c6bff5f1-a22c-5e9e-a7cd-7eb920e035f0", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-transports-jms 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3ab7349f-fa7a-5d1b-9d3e-6845c42847aa", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d9363d87-940b-5ac9-aab0-82fb926b8be6", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-rt-transports-jms 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:75356502-bd6e-512a-9732-b29a3230c218", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2f146c5e-af94-5e97-9f44-49ca85b9b4b3", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-transports-jms 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:682c8dcb-065e-5a80-8534-adaebae750c7", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6bcb5fd1-a975-5177-ae67-29d0377022c9", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.3" } ] }