{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:22fa5f64-4e2a-5f9a-82e3-c1edbd17629f", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.2", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-transports-jms", "version": "3.5.9-tuxcare.2", "purl": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:01345788-72a2-5918-a88c-d00dd14a0535", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6b10aa6e-494b-5b5f-bf9a-6244428f0532", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9f160f58-c127-51fd-a4fa-bde452427771", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e90d20c0-27aa-5dc8-bc55-c5ceae5c7dce", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4b047213-4920-5db2-af04-6a742f047dec", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:be247b10-9b38-56ba-89be-1a0177241f7f", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:92f284d5-a790-5eb2-924d-734e1e3e4e4b", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bf856acb-128a-5685-b7e8-ddb09b7c7977", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:48c85f22-828e-5797-a4a2-1ea8ade8b8e9", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:974ac9a4-cfa5-5cdb-8418-dc7388f7531c", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d501cd37-d123-5db4-a204-b7985aa24e97", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:663bccea-fa3a-53c6-a015-6d95b938060a", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:09508222-c619-5f24-8ad7-b60b7b0ee2f2", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:23b50047-bea7-5d64-be59-92a94d9d5706", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:497b1d22-ff96-55b1-8555-d9a0c1e34ecc", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:26f5d5ed-0587-559c-814b-1f4430440c30", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:96529a12-7b2e-5c2a-8ac0-1fe4be0f13f8", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf:cxf-rt-transports-jms 3.5.9-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8f0fe8d3-ec50-5af5-86bd-fea08e417380", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0c1166c1-b2d2-56d3-91cf-f3ec09492a0e", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:abfbf9d6-fbd7-521a-9b40-2e2044e42752", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:04e0442c-f758-5fb8-aaa9-b1f377e96f8f", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4573dd87-6527-5392-9e52-20639a4c433e", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:995b9fec-3072-5d28-ab14-ca4c68a59fbc", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:00079d2a-c9c5-5169-b62e-4815b2fcd9f7", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cb09d44f-9346-5f76-8501-4a28050cd694", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:33820df3-7914-5d93-8c74-720cb8cfba16", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-transports-jms 3.5.9-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b812b3f9-8abd-59fa-af61-35641cc6e10e", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b2e3d53c-f1bb-50c7-87f0-b1a267b09a1c", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5f2b9918-d490-5053-a2a2-1eb83717b97d", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4d8755c8-fb13-5351-8e44-84dad31835b6", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-transports-jms 3.5.9-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f8b74e23-0a87-5eb9-bb40-9064772ffd3e", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5ace3e6b-3206-59d2-8303-21c74521fcc5", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4f73abac-4254-5d5a-ae66-0631042242bc", "id": "CVE-2025-48795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-48795 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d40dfa3d-d71f-5397-9cce-5f54a626f80b", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.2" } ] }