{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:cbd2a110-d28c-56ca-bbc8-1988cc39c4b1", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.1", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-ws-addr", "version": "3.5.11-tuxcare.1", "purl": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:303bf11a-6c39-5919-81d4-fa4f06f07e8a", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:97a6bb2b-0ddb-5be0-b615-39fd722e8357", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:612bf4f8-711a-56dd-8a26-5401501370ef", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e4b64f44-49d2-52d2-9b1f-9a6b91ae2327", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9e7c0760-b813-5fdf-936a-1326531638c8", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4c6c319d-96fd-5a27-8c35-8a0c5148d230", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bbd0ec59-fca1-5607-af4a-e76d10d21ab2", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6ed45f1d-7d7a-524a-b4d5-89760aec4c19", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:18ba9567-4d90-56cb-a32b-bce26328ba3d", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:91e07a52-ffee-5824-bc1f-5d7762f14592", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f7b111be-b119-5671-b999-f57a8cbf381c", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:628106ac-2629-5615-b42e-2040cd383552", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:942bb9e8-6031-5b6e-815f-509e34492be2", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:355ba0a4-7d5a-52b7-b0c5-5a324e2d15b7", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:42f4c2e6-fa1e-5ab6-80a6-d7304bb71565", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:557c3621-5898-5603-89f6-e7a5a20b8633", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d615353a-0387-558b-b1e9-26e04cd176b7", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d3fa4fb4-2e2e-5aa5-ba7e-ed2fc1f31e1b", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4e19046e-2bc5-584f-bc5e-7c4e688ae942", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:15fd0452-4339-54a6-a626-e4a1ed0f86ec", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cea000ad-3692-580d-aa80-cb36f15fb70f", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:83b4ae2e-d5e5-509e-8068-e06fd85cd787", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4f9fc4dc-f368-5b1b-b2b0-af109deb03a9", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:37be9813-4d7f-59e1-a3c2-c17d5346a179", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:504f5b1c-7b8f-51ab-82e4-d31d4746320a", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:016502fe-ae06-5ab1-ac0e-7032fa974682", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-ws-addr 3.5.11-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c6ed38e0-0ca0-55f5-b6af-eecf8d64895a", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a0e91890-911d-520a-9e93-38a78febd843", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-rt-ws-addr 3.5.11-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3dde14eb-00c6-5dbe-97ce-8e3318858a5d", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9a003dfb-8976-520f-9dbf-283e7b7c7685", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-ws-addr 3.5.11-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:603db47c-6db5-58be-a88a-d5ab3adccc80", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1fb9ec53-fb37-570b-8809-563e4ef503c4", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.1" } ] }