{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:626494da-3590-5943-94a1-614eb057ff6d", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.4", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-wsdl", "version": "3.5.9-tuxcare.4", "purl": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:0a6580db-cffe-52ae-a515-3ab6e439caa9", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:9a1fe347-ee19-5956-b560-67dcf7f58b53", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f5e77f9f-1cab-5a5f-81b2-e2e047006d05", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:46fb0862-56b6-551d-8505-302392da9c8f", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7706a80a-c398-5db7-ad87-b21c943208cd", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:5c043b49-ef18-51ab-8c85-ac3da97acab0", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7fdd59cc-a9d1-5c97-ad22-afe57c020375", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a8fea78a-9b48-5b43-ae2e-01ee4374d552", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:97e32fc3-1d4a-59bd-a0a7-c99cef9cfc81", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d10a4e1b-b563-5df6-af31-38fde4774f61", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:83cafb2c-f393-5a1f-bf0e-1286202c3247", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3df147db-c1d4-5dce-a2ca-1cf71a90cf55", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a7f7faa9-5771-5174-81f0-cc2c396866bd", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d5da2db2-de37-5834-9ace-9fc2fd2336b3", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8240d184-143c-5daf-848b-4fa64bee0017", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:98283be6-9090-570c-912a-a1a3e4166e43", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:83cdd374-d87d-56b8-ae8b-8b56a34187f1", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf:cxf-rt-wsdl 3.5.9-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:416dbaa5-182f-5e99-a13f-87834ee379dd", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:714b1ba0-57b5-5111-beb9-b66a20c95544", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:289fc19a-aaae-561b-98a3-6ce3c96fdb9d", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:5cb163a3-56c2-5cee-8c90-7c1c8d3d71ab", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:64a8c1e5-5685-5946-89ad-c0153cf8fc4b", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:40929a9f-9ac6-57da-b12c-6e526815ee9f", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7a297573-2bad-5119-a4e6-ebeca0806026", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:23bfb259-382f-5c49-bc5b-bb7565459572", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:14d42cb6-1f8b-52a8-9150-082ff8f509a0", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-wsdl 3.5.9-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:5349400f-10c8-591f-8d83-e30d3e380dfd", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:663a4b4b-9258-5d80-a94c-fb948511e947", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0cf07787-186b-5d20-a333-d309bf563b09", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7153c2bd-7f26-55ab-aa8d-7907ea64daa1", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-wsdl 3.5.9-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ab9ee872-6e11-5dea-9829-097081ec8bcf", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c481d94d-0870-548d-a13c-c3babf35be53", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ccc373e1-94d3-5e07-a00b-790592202a67", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:347950e9-a93c-55e6-abef-aff61fd89372", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9-tuxcare.4" } ] }