{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:5514a69d-3650-568a-ad03-5d7b381e03e5", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.3", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-wsdl", "version": "3.5.9-tuxcare.3", "purl": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:362d116b-94d6-5f06-9fb9-cfdfd3d7c746", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ced80f3b-ade0-50be-b67a-5c9aafa37176", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:126581f7-304a-530c-83f2-d56d3bc7d508", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:464d3bf4-541d-5250-b34c-9ea7fefce6ed", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:847ea3a3-8fb9-56c6-8c50-caf0f4059544", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:dccc47b2-da3f-5592-b5ee-dbcfba9f1787", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8d9ee277-ad4f-56d7-91f4-d25c187da313", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7cb308cd-36f4-5ffd-a994-5a8246785975", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f1820bda-3bb6-583d-a5b9-c01dc36bfb07", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:cefb0b38-f224-5c3a-aa39-77d73be5b5e1", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:866d6a79-3592-5f53-b23d-17380d2a7bc0", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5eba6a70-a988-5908-a9ea-b208c888cc52", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c77acf56-05ee-5f51-9feb-d807fe0da7b5", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ecc8bc0e-92e1-5c79-9da9-eedc607e49a2", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e6f91d84-aa7b-537b-abf3-a876461de457", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:09e4715b-133b-5bbb-ad3b-ef57f170ffbb", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0c221d2a-6d25-5acf-b290-94f6856a4678", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf:cxf-rt-wsdl 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bc24a83e-3551-5a91-b87c-4723f27cbb37", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:90dfb09f-c0ed-57ef-abba-c26c6e763f6a", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8b910541-8073-55c2-b1dc-b70865a60c8d", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c936b591-83c2-53e8-81fe-ba903ba1e17b", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1d4a7d16-38c6-5fd2-960e-adefd367d1a2", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:87d2109f-fd87-52fe-80d2-02703ebee145", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0b2f53ff-e9df-50be-b8f3-dd570be12f60", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:effaf5c4-9562-553c-b85a-8b21d46026f5", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:50176aa0-8118-5941-98f4-caff5b84a93b", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-wsdl 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:01b537a3-612a-5f8e-b2d6-dbc9a164266e", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:00aec561-5331-5e4d-856d-6789aa467245", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:358192e3-0c66-5828-81dc-4c3ee4991095", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:83a46e78-23ae-5d0d-9c31-a6c2c72288ec", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-wsdl 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2ac99b5e-d873-557e-9f68-5fded4423e07", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:397f23d2-0fa4-5f3a-b9e8-c425a1044c12", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2db8d0bf-dbe3-5481-b4dc-dbc85159391b", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:108f7147-3009-583c-abe7-9d388903e67f", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.3" } ] }