{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:334e19ed-c3f4-5818-a134-8e00bf1f296b", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.2", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-wsdl", "version": "3.5.9-tuxcare.2", "purl": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:f0c7c511-93bf-57fd-a5bf-9e455c216d23", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:827ab5f4-c365-549b-8fbc-a35b1e7202a2", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f73d381d-bb02-51d5-bfef-2e0555679c55", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b9e1e18a-17dc-59c1-8c16-5d4d6e270b74", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c70434c4-db4d-5344-967f-feddb5f254ae", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4e41c1ba-dfc7-53b0-8f6d-8cbf7b98f4bc", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6a04ff23-ba59-5980-9b33-f244f3bbf0d2", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0f248204-3160-5610-9831-3dd5c8a3cf7e", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b30b0424-8136-528a-895e-d6c66bc15895", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:553f8707-90d2-56c1-a71f-198c305bf089", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2ba51687-d998-5319-b7e2-d346f515cdfc", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9667ef0e-f8c8-5882-b611-154085a36210", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a1d2ac28-06ef-5a2f-b788-84c2b8e5c2b1", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c7d9c024-ddc0-5c4c-b83b-9166e0c75e10", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f34eb5e1-f7d6-5ba7-b9fc-49620eb116b5", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2220e6e8-5f24-5a85-8b33-9b20a92563f5", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c41db249-a40d-555d-9cfd-bbe2992fb41a", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf:cxf-rt-wsdl 3.5.9-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:db3b681f-d739-5e95-b92f-c5a2135e192f", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2146fc96-6b9c-51ff-9ef6-16518a6b27ef", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b8fe1b8a-1e22-5dbc-abbf-1124b2a26acd", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ce95eca1-b8af-5092-9a75-63b417e760d0", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d9c74e36-e579-5cd0-a188-0f07e3f8bb81", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2b10d47a-34ca-59c2-b6bd-532795fab429", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:62edb304-e7fa-57b6-8841-21196ae09f9d", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:817cd46f-8380-5836-a1fe-5b6ea37e2b43", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ae098ebf-5588-570d-bb12-2773293ba1ad", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-wsdl 3.5.9-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:99ea2663-1c44-5f4b-9529-99b8842e79f8", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b56564d3-ba08-57a9-bab4-9dc76ea7e046", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:95ff8c71-a423-56f2-93fd-8dfc24f057c5", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:dc079e78-a88c-53ae-9b43-e622d004ddc2", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-wsdl 3.5.9-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d162bc32-c91d-5ad3-bbdd-6ed5e5d9a7f4", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:33723e40-8e18-5628-8d47-6a3181a1baab", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2c85c0a4-e12b-5f7a-bb50-5986ed7e30ad", "id": "CVE-2025-48795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-48795 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2f43f33e-8858-57c5-80a1-35ef206ac92f", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.2" } ] }