{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:35c1b749-a87e-5a6a-a8f0-5688a040c675", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.2", "type": "library", "group": "org.apache.cxf", "name": "cxf-systests-ws-transfer", "version": "3.5.9-tuxcare.2", "purl": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:4cd26e10-afdd-59ad-9469-6cffb41e48e3", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-systests-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7f70e3fb-d74f-5edd-bd83-2ca24daeb514", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-systests-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b5a47279-d3d4-5e2d-bb89-334d27f8c810", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-systests-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:faaa9686-bcd2-52a2-89d9-549d92c217d3", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-systests-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1065eb29-13f3-54ff-90bc-c24a63ee2638", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-systests-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:59e4c05c-4db0-573d-89c0-07ee912d16e6", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-systests-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5ba3cbb3-80ed-5571-9636-47eefcd4b752", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-systests-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4d7dcf7c-9db6-57b3-9518-d87c85ac8490", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-systests-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e55ac538-2e90-5eca-a393-3adfed9f6549", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-systests-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0962d467-50f0-57b8-9e86-5df8cf3163d9", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-systests-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f97b66e3-ce88-517c-a7c0-8ac4559e677f", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-systests-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e4fe36f0-ea91-5f54-b7a3-8c5fda227c90", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-systests-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6886d633-d112-5a53-972f-8a3cec3c5afa", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-systests-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ec37fa20-9264-59cc-8c0c-55923c52d391", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-systests-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b7ff25a7-3347-509e-a940-d89dcbd429fb", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-systests-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fb3dc2b1-9121-5bd4-a7f8-dbea856480d2", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-systests-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f3fe28d0-3604-5f7a-938b-e359974933af", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf:cxf-systests-ws-transfer 3.5.9-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:afae5076-0fdf-5936-824b-29804f697402", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-systests-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:dc86fd06-ef49-52b8-a1bd-0bd97990122a", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-systests-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:22f17029-7615-5c96-bf96-6de88fbd2eb4", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-systests-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:aacb5fc8-579f-5642-9db4-56790f813496", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-systests-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a8f906da-461c-5d39-961e-19bf4a6b2f99", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-systests-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:155f2199-afc6-51d0-ac83-b26167527dfb", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-systests-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:76245547-c990-54e6-b508-162d45c5a7aa", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-systests-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e317d22a-e02f-5e90-819e-70bd34087657", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-systests-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c84ee8a2-76ca-569f-93e4-3582309d50ca", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-systests-ws-transfer 3.5.9-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0f53a7bf-81f8-5e5e-a898-3436a38193ac", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-systests-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:888955e8-9a12-57d0-b224-f940f2c57f73", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-systests-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7813a3eb-1ad2-55e9-a960-0be18cdcdb22", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-systests-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e8149df2-b240-5605-913c-7dc9315d4300", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-systests-ws-transfer 3.5.9-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:369703cc-9729-5620-af83-b0cfd9f0f7b1", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-systests-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:83563204-985b-551e-a4ae-7c837365c428", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-systests-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4b9a189f-1bdf-5407-a6c2-ef3ced630300", "id": "CVE-2025-48795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-48795 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-systests-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:40c3dc8c-e31e-5879-a090-dfef270a8a05", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-systests-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.2" } ] }