{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:272cadb0-c1ce-54fd-a8f5-71dda29fc834", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.3", "type": "library", "group": "org.apache.cxf", "name": "cxf-systests-ws-transfer", "version": "3.5.9-tuxcare.3", "purl": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:1d599462-e047-53bf-b52d-6c5a663c025f", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-systests-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:45740757-2735-5ec1-85c2-9aea20b4f4bc", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-systests-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f2aa287f-4d83-5ef6-a3cc-d48e6ea6f459", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-systests-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:60d14e0d-b7ac-5f16-b072-c8c0785f5021", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-systests-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d794dd10-bab5-5b91-a4b1-e588327ee63e", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-systests-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e157a579-2790-560e-b9c5-788ed21afab1", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-systests-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f3591762-57a4-5ec4-97fa-0b0e04aa1036", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-systests-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a33d5c62-2be1-53be-b557-c5a1daa72719", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-systests-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:720074c1-c958-58f5-b4a1-d37eb35c037e", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-systests-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:77edd700-b583-5a51-aa79-60f7f3713cc2", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-systests-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6f5e34d0-51ec-586c-88dd-c44bd7bfdd02", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-systests-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c2ea3276-2af1-5812-9abc-a95e892ce6d9", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-systests-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ac31d137-27c7-5843-9e71-0a4b2a26425d", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-systests-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5de181a9-9773-5324-817c-c7b9282ae85f", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-systests-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5332c802-8ff8-53ae-a590-de300d66e504", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-systests-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c74a1c37-0e1c-506a-807f-b0fd08d529a7", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-systests-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d8fde041-82fc-5b94-8947-c6d6d157cbdf", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf:cxf-systests-ws-transfer 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bfad4acd-dd5d-5bec-af55-54c9f4a631bf", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-systests-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3627c73c-1c5b-5195-baff-635eb5a72b2d", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-systests-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:99c865af-5704-5c90-976b-30968205c28c", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-systests-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:da384ee1-9867-5099-bbc2-b00319c775a2", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-systests-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a28ddaa8-69ef-535a-a2b8-a78233d8a65b", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-systests-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9f4dd5c1-8424-535a-a048-58b41030ba06", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-systests-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:23a6abd3-16e7-5e72-b006-8623b7b28348", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-systests-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:388e02aa-afd4-567e-ace6-2b336fb87918", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-systests-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1be85db6-4b3e-58a9-b886-a4d69753d169", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-systests-ws-transfer 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d82cd1d2-1a6d-509b-987f-b4b229f9c48a", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-systests-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:966efc3e-5bf2-5a87-9b0c-fc99a6318a45", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-systests-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:47f5b1c3-74ca-5778-9c74-312f484ec0b1", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-systests-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8bd9b569-1e37-556a-bff6-bc48d4ff3a15", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-systests-ws-transfer 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:060b2145-2cbf-5601-88bf-da4f30ddf463", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-systests-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ccacec1f-ec82-546c-a45b-93fb6812fb8b", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-systests-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:401ee146-7a75-5879-9880-79fc3c11c8d1", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-systests-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:510cc368-d40d-5af9-805f-9f65078fbb25", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-systests-ws-transfer." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-systests-ws-transfer@3.5.9-tuxcare.3" } ] }