{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:3116c413-49d2-5ebc-b276-19d69676aad7", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-ws@3.5.11-tuxcare.5", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-ws", "version": "3.5.11-tuxcare.5", "purl": "pkg:maven/org.apache.cxf/cxf-rt-ws@3.5.11-tuxcare.5" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:2875ba68-816b-5e2a-a2da-cf8bf4895358", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:192546d0-8024-50f5-a9d9-2bbf26c11850", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:f7afb58a-f88b-58d6-9add-624d692e47a6", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:8baa0594-acc8-5bad-bcfa-55907f58133f", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:2a59e11f-daad-5908-bf4a-72780c8a36bd", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:7e795636-76b7-5df9-9e60-e7ffeee42e82", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:7dc79b11-0ff9-5c45-adf6-70c1ab8aa78f", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:68403b55-fe54-5ae5-bcda-83e446c8ba1f", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:1f66eb29-01dc-54cc-9aac-c022bccb40dd", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:51f1a98c-9ede-5070-acf9-c56fafd20538", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:2da16ae5-4bbb-5bb7-8fe9-dcffb0be0112", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:2e89776f-9f45-5ca6-9f54-d194f69161e8", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:3fc4d3d8-ae24-5ea8-a2b9-a0c7b6c27b1b", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:bd4b6378-984e-54e9-892d-af8519f55e4a", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:3c2b9242-bd25-55ef-b110-8fa7bde20e29", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:c3cba3c0-8f35-5e4d-bf4f-afcf19c2597c", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:74bae3e6-550e-540b-9e91-9496f927a42a", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:2401982a-488c-52dd-b4f3-2244a94212ed", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:31086dda-a79a-5323-b46a-3d37163fd95e", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:f3758991-56fc-53ac-9582-56ca755bf954", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:fe966302-3092-5f09-830c-fb9ceb9b2407", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:8e49ae4d-f2d6-55c9-938a-9fcc267f8955", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:675aa7eb-2629-552a-8a69-8702fb81e436", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:86b6cd47-b518-5c3b-9d95-287675d60af2", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:f36a1776-57a8-59c0-ad52-b66fd55e5693", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:320b9aaf-5c3c-5656-bd1b-de527bb7f524", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-ws 3.5.11-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:0e01158e-4e7e-5a79-acbc-7fb013bef3c5", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:7534c907-6884-5426-8205-83cb28912527", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-rt-ws 3.5.11-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:7789c045-0d32-58f3-9952-46e8503d84f1", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:1713c071-fbdc-5249-b66e-d28f38f4038e", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-ws 3.5.11-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:7e1b2a09-a5eb-500c-a953-ecb0a8cc984c", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:c3446e81-c2ca-57cc-96e9-969bd766b28f", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-rt-ws." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws@3.5.11-tuxcare.5" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws@3.5.11-tuxcare.5" } ] }