{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:47737df1-3cd4-5113-aed1-6a2c167e3e72", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-transfer@3.5.11-tuxcare.4", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-ws-transfer", "version": "3.5.11-tuxcare.4", "purl": "pkg:maven/org.apache.cxf/cxf-rt-ws-transfer@3.5.11-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:8750e537-f530-5d41-b5a9-b4f2e2b91ce3", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-transfer@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:46403793-29ab-5897-98a1-689978232daa", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-transfer@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f0370768-6354-55cd-a2ff-fd5df775065a", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-transfer@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:61712f04-0a34-55e6-b2ac-1d8896e3876c", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-transfer@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:61a05ef6-6017-5714-8284-115280de2087", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-transfer@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:01cdcf29-d54b-5164-8f74-908eab786122", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-transfer@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:dc664391-2bb0-5aff-b9b9-74c27bc2c98b", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-transfer@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:32c482df-9509-5016-a2ac-87efad449272", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-transfer@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3618a23c-6992-5a06-8fc1-f62848ddf4a8", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-transfer@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:43882122-279b-581c-b145-72da2443388b", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-transfer@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:fb3d060d-909f-5cec-92f6-c9f70a16a193", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-transfer@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:358b798f-56f5-5240-9a3c-7f7d0761869c", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-transfer@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ebd57218-7139-5bc1-868a-dc95bace455d", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-transfer@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:cf3c0523-f3ab-5221-930f-cdbaf3e2284c", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-transfer@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:97a599b5-d5f5-5887-88f0-3b315055e4ee", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-transfer@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a6bdba16-7121-5c6f-8569-213cd0f2f5c9", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-transfer@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:19320877-fd5d-5425-9b42-6abd94c67939", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-transfer@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:272109aa-c683-5b72-a297-cfb83f78cde1", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-transfer@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:de558a02-81eb-5849-8505-8f92f429b92e", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-transfer@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f573256c-6c76-57a1-aa3c-4cda6f88f696", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-transfer@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:5141f7b5-7851-5124-b2f8-259a859161b9", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-transfer@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:670a193b-d1d6-501d-a98f-e8a9b753f268", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-transfer@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:abbee48e-2fcc-5c6b-be47-f1913ad156ab", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-transfer@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c7bef651-0de5-56dd-a5b9-22e0f3e89918", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-transfer@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c4bb9065-5e38-55cc-aed0-aaf8dd58230d", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-transfer@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:1d530355-c773-52f5-8d00-56eb6b17deee", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-ws-transfer 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-transfer@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e8e108db-7fbf-560d-8d4a-65c467dc8b99", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-transfer@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:bf95fc87-f1dd-5993-aaa5-17b3a6ddb1b7", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-rt-ws-transfer 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-transfer@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:49491d98-6557-5781-89ac-d4f3f827576b", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-transfer@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7ee8d3df-34c9-58a8-9959-8f8d17115433", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-ws-transfer 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-transfer@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:44cc4c4f-8172-5305-af3a-d0bef7b358b9", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-transfer@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:17fdf862-ab82-547c-9030-05186903ffa6", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-rt-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-transfer@3.5.11-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-transfer@3.5.11-tuxcare.4" } ] }