{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:ee2720fb-3439-5e76-8479-b9cafebbd3a9", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9.tuxcare.1", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-wsdl", "version": "3.5.9.tuxcare.1", "purl": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9.tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:010726e6-535a-583e-b141-8892bda002c7", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2154027d-8464-5029-b3a8-dce765e60172", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b636ed7b-4081-5137-b443-e77f684df4db", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cb689ebe-65d0-526b-8ece-350b83c4bb92", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a5feca6d-0308-5191-aeb1-acba4fc0bda0", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b17e9431-62c9-59a5-b7cb-00008d714eaa", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:61641145-506b-5f4f-8fd8-069655842d47", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b00a1126-2b56-52ad-be87-1739a54c10a5", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c4a01193-ddef-5380-bf6f-e8e551bb61f1", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:03080bdc-1017-5552-8a1e-9f9c3230a230", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5f25b5e3-e7a7-5dc8-9008-524b817c1506", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:82b8ad60-a917-5b4f-898c-5fa5dea3ba9e", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:96b66174-a27c-5218-b072-8c6422489c45", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:43df273f-e417-5ed8-bf5b-f5ff35a127cf", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9d608222-ad5f-5baa-90ad-245e8f657e8b", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:71f3f158-9fd5-512a-8ab8-f47ff972606b", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:06522c7a-ba15-5451-9e00-978140d43ddc", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf:cxf-rt-wsdl 3.5.9.tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5fe05b15-1ceb-5c26-b194-b5e797dd1656", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:84990d1c-e8bf-57b0-8018-b0e27db4fdf0", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:77c37526-ba2b-565c-8243-7fcb7894b7b7", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:be72ed97-4b81-5b9f-93bb-09cdf1fd3745", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:546497c6-dce9-5905-a79c-18f43374dec2", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c660df0a-ea0e-5311-9e97-6b2decbed0b0", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6e387e5d-d081-5b52-99e3-9fdd90d9f98d", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c7d7b010-5db4-5ac8-9ac3-174596041b7b", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:78b812ba-7f8d-5f20-96ab-7f0424266b93", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-wsdl 3.5.9.tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b3b2da0b-7d79-53f5-b43e-e90976e5c901", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:87c5b45e-b9dc-5d1d-ae12-2c7df596673f", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:584838c2-251a-5630-8b6d-c193e3c544f5", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:24d0c0b7-d719-5388-865e-726979b6f5f5", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-wsdl 3.5.9.tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f61e7186-67db-5282-9f42-beca469c9341", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:95cefb43-ec46-5797-9298-91ef3d80b188", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:32f590df-0382-55d9-951d-814b8905613b", "id": "CVE-2025-48795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-48795 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:35f28f6e-beef-58a4-9ae0-021d8d71b5a8", "id": "CVE-2025-48913", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-48913 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-rt-wsdl." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9.tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-wsdl@3.5.9.tuxcare.1" } ] }