{
  "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json",
  "bomFormat": "CycloneDX",
  "specVersion": "1.6",
  "serialNumber": "urn:uuid:6395fb38-f791-5357-ab48-59993b7830d4",
  "version": 1,
  "metadata": {
    "tools": [
      {
        "name": "tuxcare-vex-generator",
        "version": "1.0.0"
      }
    ]
  },
  "components": [
    {
      "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.4.5-tuxcare.1",
      "type": "library",
      "group": "org.apache.cxf",
      "name": "cxf-rt-ws-rm",
      "version": "3.4.5-tuxcare.1",
      "purl": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.4.5-tuxcare.1"
    }
  ],
  "vulnerabilities": [
    {
      "bom-ref": "urn:uuid:354b8463-7d34-525e-8dd1-9a3649910f00",
      "id": "CVE-2022-46363",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2022-46363 is fixed in version 3.4.5-tuxcare.1 of org.apache.cxf:cxf-rt-ws-rm."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.4.5-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:3884f0b6-439a-511f-93a4-02c8ebe94252",
      "id": "CVE-2022-46364",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2022-46364 is fixed in version 3.4.5-tuxcare.1 of org.apache.cxf:cxf-rt-ws-rm."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.4.5-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:9a7e5e3f-4dfa-5117-9b4d-6a1bbd20b0ac",
      "id": "CVE-2024-28752",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2024-28752 is fixed in version 3.4.5-tuxcare.1 of org.apache.cxf:cxf-rt-ws-rm."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.4.5-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:feb3c8b1-8547-5413-b609-485b8b85dffd",
      "id": "CVE-2024-29736",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2024-29736 is fixed in version 3.4.5-tuxcare.1 of org.apache.cxf:cxf-rt-ws-rm."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.4.5-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:167640ae-d9e5-508d-88a8-6c2e44fee998",
      "id": "CVE-2024-32007",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2024-32007 is fixed in version 3.4.5-tuxcare.1 of org.apache.cxf:cxf-rt-ws-rm."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.4.5-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:82cc23b5-8ec7-5fde-ab2d-fd4ee1397527",
      "id": "CVE-2025-23184",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-23184 affects version 3.4.5-tuxcare.1 of org.apache.cxf:cxf-rt-ws-rm."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.4.5-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:42dd94dc-821d-5c3e-8084-68d0bb6c3c5e",
      "id": "CVE-2025-48795",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-48795 affects version 3.4.5-tuxcare.1 of org.apache.cxf:cxf-rt-ws-rm."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.4.5-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:fe69eb1f-b734-5620-bfa9-b621c32878ff",
      "id": "CVE-2025-48913",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.4.5-tuxcare.1 of org.apache.cxf:cxf-rt-ws-rm."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.4.5-tuxcare.1"
        }
      ]
    }
  ],
  "dependencies": [
    {
      "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.4.5-tuxcare.1"
    }
  ]
}