{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:dc60a1c5-c945-5a74-8718-5bd6c74c77d5", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.2", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-transports-local", "version": "3.5.9-tuxcare.2", "purl": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:4396f487-d136-55b4-9c65-5e6612782677", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-transports-local." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2ddb24ac-2349-507e-acd3-7d20013ea80f", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-transports-local." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c305a250-f5ee-58a9-9c45-cbe4b36159b5", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-transports-local." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b5c0bf50-4bf5-5e0e-b75f-6140342dcf47", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-transports-local." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c49b903c-e4ce-5da0-ac92-b9f2d3f1f525", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-transports-local." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2a716472-0d66-5924-9394-263b9f0df920", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-transports-local." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6e20bec3-6987-5911-800c-95b35815fe1f", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-transports-local." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:dc5d2cf3-ef7b-5e9c-8230-41eadbdc713b", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-transports-local." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:95e4cc3f-b54f-582b-936a-de904aae79a8", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-transports-local." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:64970745-658f-501f-8e34-a2481eb7f8ea", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-transports-local." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4db2dfe9-6fbd-5ac9-a90e-a0b1dc43d2ab", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-transports-local." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4f0a97ba-8e91-54ff-85c3-4c787f46b1ce", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-transports-local." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:10213906-0e23-5f10-846f-b10a9aa96092", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-transports-local." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fe9193e1-61f0-50a4-b57e-c143df231116", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-transports-local." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:492935c1-0b83-5931-88c3-dea03c385d2b", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-transports-local." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0a12a7cd-59c4-5a07-8064-3a04110fa70e", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-transports-local." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ee216341-d441-5814-9d1e-1720d240fba4", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf:cxf-rt-transports-local 3.5.9-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d0523a9f-7d3a-5ecf-a2f0-e94254e95cbc", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-transports-local." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:43d6fd9d-a617-5cdb-a77a-ea4790f8538a", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-transports-local." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3d97f443-47f6-5a6b-a668-55b9f9ff6c9e", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-transports-local." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ee12e659-814d-5664-9423-0f93199af2bf", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-transports-local." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9dacad70-6c14-561f-8d0e-31491907c1b5", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-transports-local." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ba43085a-3042-5ab2-86d9-4bcf5b36c201", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-transports-local." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d02041a9-65cd-547a-8be1-29431c8fd38a", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-transports-local." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7de475e9-dd0c-5a54-914e-ff1369a2d17c", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-transports-local." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:060cfebc-75a8-5528-a648-7b981a569c78", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-transports-local 3.5.9-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f9728716-858b-50aa-a907-3ee98f04c823", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-transports-local." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:77ae3390-d83c-5090-833b-f1a409dc2da4", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-transports-local." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2c8adaf5-e7ac-51b6-97ce-89ffa7cdcebd", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-transports-local." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:dac45610-50e7-54f6-9944-df74cd9f3bb8", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-transports-local 3.5.9-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e9bda9ea-c321-5d4e-9551-2c15c0973c48", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-transports-local." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:11ca1422-dd7f-5862-a069-1e911c432a1e", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-transports-local." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b245155c-5b12-5e57-b6ea-d7e9eb46160c", "id": "CVE-2025-48795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-48795 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-transports-local." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7c1f2fc7-4b54-58f3-a808-5dfc5a267aa9", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-transports-local." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.2" } ] }