{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:e3dcbea7-7a79-50fe-a7c9-900532693ac5", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.3", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-ws-rm", "version": "3.5.11-tuxcare.3", "purl": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:596845d0-1cc0-5cb4-885a-d3e68204d11b", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-ws-rm." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:60695029-e4fd-5721-aaca-f55682a5f035", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-ws-rm." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4136e931-d6cf-5339-8639-3b62cc9e2157", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-ws-rm." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c16ef133-30d3-5852-b4df-aa79b0d3eae6", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-ws-rm." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bbe57590-be68-54e7-a65c-1f89ca503985", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-ws-rm." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f1106096-39ac-5f18-9264-1fa6a862a7e8", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-ws-rm." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:026b209a-b887-55cc-9564-1469851bc0f1", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-ws-rm." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7e043b62-1c31-5559-afe7-6b1f19de3378", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-ws-rm." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f9ab80bb-c60f-512e-b2cc-9ec38bc8c017", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-ws-rm." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:cd8140bf-f305-556a-8c9e-91ca391bc586", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-ws-rm." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ef3b5993-d716-5528-b230-26d3156f874c", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-ws-rm." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3581cd4e-1b71-50dd-a4ae-42ca53556783", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-ws-rm." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7574818b-37f2-545f-870e-f4ec2d15bfca", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-ws-rm." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0b88163c-317d-5200-8760-fa8502815d4b", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-ws-rm." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b3c3fb6c-d889-54ef-bdbf-46ff97ff23be", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-ws-rm." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8fcba923-8bac-5430-96a6-809fc3c3fcff", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-ws-rm." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:73ffdee1-69da-5572-8d5c-ff2b4338b922", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-ws-rm." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:333de4dd-9b01-5130-876a-31da15e73864", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-ws-rm." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c37a33df-741d-592c-9daa-e45ebf30218a", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-ws-rm." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:18aafd78-cc7f-52fa-aec7-9654552b838c", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-ws-rm." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7400b6c4-b199-579e-98d6-6da091abf3e2", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-ws-rm." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:72d7813b-85cf-5eb7-8aee-b81ec42f3f75", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-ws-rm." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:398abd61-243b-5eb5-a8e7-37a795926fad", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-ws-rm." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a4a3f476-56c2-5374-a61d-bd6689ca9090", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-ws-rm." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:30ae1672-a826-51bd-8400-b78948cf086d", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-ws-rm." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d4d4202b-57d4-5b7d-9f28-2bb5e51a1950", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-ws-rm 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a80ed4e1-be2d-5d20-9e19-aefce61f43d1", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-ws-rm." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5ece5553-ac9f-5585-bbb8-a334ae08cdf6", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-rt-ws-rm 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ad15b688-87a2-5cbe-90af-cc6d455b5b91", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-ws-rm." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fadd7e23-f9a0-5dd1-830c-230cc9f406ff", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-ws-rm 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8b547caf-9c80-50b9-8675-f86ba48393d6", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-ws-rm." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a62417c8-c01b-566b-8b6d-4cd91f7af323", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-rt-ws-rm." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.3" } ] }