{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:cd7d1349-6c7b-5a57-a3c8-572f4fb26ff6", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.1", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-ws-mex", "version": "3.5.11-tuxcare.1", "purl": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:86c94467-4612-5a3c-9a15-81a7b4259fa8", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:aced117b-f2ae-5e53-b69f-e6650627a2ac", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f09e41c7-dc24-5ab0-8ced-78b407630a0d", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a4f68968-4ccd-5ad7-b9f5-97bca7c45098", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a5b4ae13-5c72-5f9e-8df8-7fe67cf2fc37", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:407b71f7-e7bb-5097-af62-c5ee4d97eb85", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dd65f52d-e8e9-5a81-ab90-30271d860be4", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2f10c215-6b6f-5d7d-8549-30009775ccb0", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5d422880-412a-5cf6-a8c7-58178e422687", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c17961a5-332d-54c5-8550-3b14c1e00f68", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f13630b0-99a3-5d2a-b356-a777fe88c733", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b3c59ce7-4bb0-5c4e-8e79-5bbf8ba6b6ce", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9af1ae89-283c-568e-bdcd-aea583292572", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a3c50641-881e-5534-80ff-6e5ecf44a499", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9d11e714-9db2-5716-8acb-19caec859b3b", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:49ace4af-a49f-5fb5-b082-230500876cf0", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:95e1df5e-18a6-5e59-a21d-cf61b1d20978", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1b96c0f1-4d3d-588c-80fe-118bbae75b31", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:02a77601-c721-5bb1-a081-fe28e30b91b0", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:63d2402d-9fc9-56c5-bd2d-bf586d517d92", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:294f4362-ddeb-5a4f-8ff8-95651cc7f168", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a644a492-8b31-5509-a5b0-b6be9eedbba3", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9df7a840-60ec-5478-b701-996c3f8616ad", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:85340917-1e62-5e5e-b2c7-72f9065c2e8e", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d04af4d7-f385-5709-a9b7-8757e8268404", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dcc517a8-1310-56f6-b0df-8ac134ec08a8", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-ws-mex 3.5.11-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9a2e1a3a-3b6f-5d7d-924f-4fdc9529401a", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d19f4768-5447-523e-8810-4a3b0a3c1102", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-rt-ws-mex 3.5.11-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c091731e-6e96-5496-889d-e6d3e83052ad", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6ad3d5dc-67a0-550f-9cf1-bed0faad9303", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-ws-mex 3.5.11-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7bc2fdf9-8de1-5487-85a2-6349c676d597", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6c17432d-8151-5451-8c6a-e6242276460a", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.1" } ] }