{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:1865a27a-bf73-57e3-bc9f-69251c49e2da", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-eventing@3.5.11-tuxcare.5", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-ws-eventing", "version": "3.5.11-tuxcare.5", "purl": "pkg:maven/org.apache.cxf/cxf-rt-ws-eventing@3.5.11-tuxcare.5" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:1167bf80-3fc5-5b7e-92c6-a650ae73a371", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-ws-eventing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-eventing@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:8121c4f1-d748-5ab5-9a41-75de921ac372", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-ws-eventing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-eventing@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:2873e1e4-538a-5d1f-be59-809ba493e1cd", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-ws-eventing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-eventing@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:a280a162-561d-5c1e-a764-192a1b167fd8", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-ws-eventing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-eventing@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:43594f3d-3091-56f5-8d4a-79f064ec6725", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-ws-eventing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-eventing@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:5e6d8f62-0930-5961-bc33-9d0532da1897", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-ws-eventing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-eventing@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:f1026359-d042-525e-a9b5-6428f191ba10", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-ws-eventing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-eventing@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:89382945-3fcc-52d5-b621-97bddec9567e", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-ws-eventing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-eventing@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:55cd3096-1cb3-54aa-8a84-89631d6d383d", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-ws-eventing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-eventing@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:c0c9cec1-c5c3-57fe-beab-18c2e89c2277", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-ws-eventing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-eventing@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:fad69ce9-a00b-58de-99ac-77bb726c3c2b", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-ws-eventing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-eventing@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:07a85dae-1b5a-5239-8dc9-1c2e631250e4", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-ws-eventing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-eventing@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:ce0585c2-7b94-569e-925e-dc1d2af9a1ff", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-ws-eventing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-eventing@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:b6850b13-3832-5413-b54b-b687fe1c03a8", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-ws-eventing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-eventing@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:68d32073-6e0a-5c39-aa59-ab16927fca6e", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-ws-eventing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-eventing@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:614cc408-6a21-5bf7-a4c3-266bd1dba32a", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-ws-eventing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-eventing@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:2f4bae5a-691d-5ccd-985b-fc0a66d57d0c", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-ws-eventing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-eventing@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:20934887-d9c2-5491-9c4b-74a3812f4154", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-ws-eventing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-eventing@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:ca637983-d2b8-53e9-8f38-6ed476aaaeca", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-ws-eventing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-eventing@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:8a75724d-62bb-5ca6-aa34-3ef09da25f5e", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-ws-eventing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-eventing@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:af6c11c2-d358-5960-8220-9bf2b9440bbe", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-ws-eventing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-eventing@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:f5792751-2fbe-59ff-b8a2-c8b8e563a254", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-ws-eventing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-eventing@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:a0adc3a6-8c83-5dce-a2e2-cf8ace4ae978", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-ws-eventing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-eventing@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:86505487-dfa4-5d32-998f-b593d5af0fac", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-ws-eventing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-eventing@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:e769149f-82ed-5efb-a720-b7aad76bbd8f", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-ws-eventing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-eventing@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:7e8b6e1c-7f08-580c-89c6-a3aab3d92a80", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-ws-eventing 3.5.11-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-eventing@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:c5d7b53f-739c-51ef-a22c-eb728e6178f3", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-ws-eventing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-eventing@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:8cb46e4e-de85-549d-959f-8f75bd182aea", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-rt-ws-eventing 3.5.11-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-eventing@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:f5dc4ab0-8ebd-584d-bf06-1c904419f7d7", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-ws-eventing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-eventing@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:e707a21d-c97c-58ab-892e-36b9b3898684", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-ws-eventing 3.5.11-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-eventing@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:9c1c79e3-64a5-5889-a12b-f7f5df811cbc", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-ws-eventing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-eventing@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:248f9042-6ad6-57a2-ad69-c036b88f0b8b", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-ws-eventing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-eventing@3.5.11-tuxcare.5" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-eventing@3.5.11-tuxcare.5" } ] }