{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:baebd765-1f53-5609-b376-793e3a5287e6", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.4", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-transports-jms", "version": "3.5.11-tuxcare.4", "purl": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:3a9442eb-455e-5991-8dc0-5023342481ee", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8c39e680-b88f-52f7-ab5b-efb632c2f852", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:603424bf-5e06-5863-abb4-455443331770", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:16bd3f33-086f-52f5-9620-e0776b4ce44f", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e6e104cf-77e4-5d0a-906c-92c1a1aafd96", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ff7e2445-2ec2-5672-9d6b-9a58845396f9", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:5740d24a-73ac-5686-9cc2-6a656989a899", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3bcfd1cf-08a6-5eb8-84bd-2173eeba6a8d", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:96e38029-427a-548d-a498-7ae3d446da9a", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c7c63297-b49c-58f3-871f-141535d74884", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:6fe7abdb-2447-5025-b212-0e06e3b90670", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:fe61c3d6-c0ba-523e-bee0-248a004e1fd1", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:cf20096b-c952-584e-b3a3-0b13767ca0a9", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:feebae17-4513-5512-a8ea-d275ac2b9075", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:51600aa5-65bc-5172-bde3-cdce4ccebad0", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7f54f36a-ffc9-5f95-a018-9803c9ac1ed9", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:67a0e096-3c38-5400-9264-f2245b84cce0", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:653c646a-5c5d-5920-a436-fa7f2e4dac15", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:134769e5-fd6c-5d83-ab85-309cfdaf5e08", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:35651c60-ca41-5656-8584-a09bcdb42b7f", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2b2d875c-d3a3-5ae4-8433-9496461522c8", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:5359e6b8-7d96-5a6d-b945-dd4c94b2fc5e", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:764f05c4-a41f-57bf-92d9-6385e6b4fbf0", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e6541a1c-fb2d-5433-ad3a-ec6fc70b7f97", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:731831d6-6d5d-593b-bc4b-1d60013ddc72", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8562ab37-0b15-53d2-a452-27efebafcd14", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-transports-jms 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:cd1b9ea0-b5fc-530c-bc72-e37da0477015", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:83e5f3ca-9440-56f1-adac-2e74f06aa665", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-rt-transports-jms 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:bf9c6082-446e-56ae-9baa-85a1003e490d", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0075ebdc-5c71-502e-9662-e402ef298399", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-transports-jms 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:900a490d-da7d-5108-800e-129eab6b16ff", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:46b8db5c-bdfa-5a99-adb8-683cd1b56140", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.11-tuxcare.4" } ] }