{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:3c3f29fa-2292-528b-a94c-37bba636778a", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.3", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-ws-mex", "version": "3.5.11-tuxcare.3", "purl": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:21f15abd-b0f9-5687-80c0-b5b36dab4f18", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ee69e0d2-0ebc-5ec6-9479-426d484df764", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8b61673a-c7cf-5e13-b20b-9bbb2be3b164", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:703d9689-e3ae-5e97-90d4-4b5583587efd", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5551ea14-9c69-5a51-a25a-693f6311e67f", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:829a723e-e680-540a-aa96-40f9f71e42f6", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:49954ebc-a027-5f79-955c-cd7e066bbc02", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:122c5e45-8b1c-51ee-beee-7e4ce59aa4c1", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f5844a38-9164-5e74-8357-0eee03d3160c", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:746ab125-53eb-584a-8a37-8a5f858d73bf", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:40971edf-7aca-5c72-a879-9e0afcea2be8", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7a1a9eac-4163-597f-a2e3-6bde616c11b3", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e9aa27ab-93bf-5b81-943d-0e8e8cdeb6bd", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c0e2c51f-eac5-5c1c-89e2-2234a1b324af", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:52d824b0-1310-58c0-9c33-b42090d524f3", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:24f2f6d0-04e4-5243-869f-9e64a50d34a7", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:56ea9fa2-ff2d-50f0-8eaf-e4053dd22c1c", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2b10d1e7-69cb-50a4-b34a-4ca6d242219b", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7c29cfcb-78e7-56b9-9e95-5706f1ae84dd", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9368ac60-ed53-5e89-b57e-0a3beacb585c", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:abfb81bd-ec28-5546-aa7f-59aef9c9e652", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b9ddfc5d-5494-5315-a599-248f8c00f38d", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d4dcb38a-816e-5407-a69d-45f32ff37f2f", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:226c6828-d013-58b7-8997-77384478de70", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e2dbb017-dcfc-5170-9271-f9d1f76f6ad9", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6cb840c9-8d95-5226-bde3-8c6dd5497d02", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-ws-mex 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:80ef90da-2024-599d-80e9-63b740dec9ff", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:326c3926-479c-5f04-9242-a357db1e135b", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-rt-ws-mex 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:037fc575-f8b1-5674-ae18-f54bfd84677a", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bc4c797b-2760-52fd-964f-e9aa19eca204", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-ws-mex 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1b016b46-8220-5da6-b947-1b19f332951a", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7cf01b6c-96d2-536d-ba44-8f2667cda830", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.3" } ] }