{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:0f2def1b-9172-5e05-bca0-176ca8815d18", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.4", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-ws-mex", "version": "3.5.11-tuxcare.4", "purl": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:799d21be-7b24-5c0a-aba8-814b568b39c1", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d58180f2-ad22-5d4f-abda-a4fe5025f510", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c149258a-f24f-5c62-80d5-3b024d66a1ad", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:47ad4808-7cd9-5344-9582-a5d4a9e134e2", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f1e61196-fa02-5d87-b559-cd27b371f655", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:071e1083-f650-5ca2-b1a7-2a41ff6d267b", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a81affcd-a4b7-5099-a9a5-58a7374a82e6", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:433f2f5e-eadf-55e6-af39-4292c4743c10", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:68118d89-fd9e-577c-914f-8481c38119bc", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:076bde04-9089-5007-ab5a-1bb5e6e9bfec", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:fecb472f-bd4e-5eac-bdae-3b949340ea87", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8a0c3108-29ed-58ec-b2eb-9219709f3d63", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e6f039ba-3f85-5d5e-813e-67f0a81bfaab", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:33512912-e7bf-5760-8c6a-64626216f53d", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c39c58bf-a665-5371-ab83-27c87f457287", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d0b3151b-0ef1-598b-ac0e-ee56d8b250e5", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2e5c80e0-c7fd-5bfd-bcb4-76167b39887a", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:cfdafc2c-778e-52cb-8b59-f21009e290ab", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a12ff338-f1c2-5e71-863a-169e9091dfae", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:59c42caf-e687-553b-9653-f9c71811f45b", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2d13e4a4-fdfc-5887-8d41-9df86bc46d7f", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c481b7e7-ef4c-594f-91bd-65bf548a074f", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b3f069e7-839e-5c0e-8f67-1cc7aa20c96d", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:53cfda49-86c9-5d46-a590-1261f4ff58df", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ec911794-7353-524b-8dc1-d082b2c7a738", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7efca66e-e2f3-528c-b376-c710b5153036", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-ws-mex 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a8dd4413-7ad6-51d1-8dc6-7841d04252ab", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0c7a2308-fa82-556e-801f-31e861af00b8", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-rt-ws-mex 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a53d137f-6da8-5b7b-b541-c9908b466cdb", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3b9c4ec7-b91c-5446-b362-76e889f2bf7f", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-ws-mex 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e83b900e-4820-5e1b-8cd0-f07ff710e760", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a4e53933-381f-58ad-a492-b6e1f98843c6", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-ws-mex." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-mex@3.5.11-tuxcare.4" } ] }