{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:4484df75-1f30-5bc3-873f-cbb11e418b83", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.1", "type": "library", "group": "org.apache.cxf", "name": "cxf-tools-common", "version": "3.5.11-tuxcare.1", "purl": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:206c31f5-8f03-5688-8b3a-cc8b97f1fe0e", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-tools-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1bb4f525-1917-52a8-9fe8-b2423bba6dc5", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-tools-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:386e359c-19c7-53c9-ba2d-e0bb6ea864ee", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-tools-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:82916c27-3e38-51e6-a5b6-e241465d4c24", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-tools-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8a733425-e175-5987-864a-0fb4fae80e4f", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-tools-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5d885b46-0e3b-5697-9e01-7058f8aa6d03", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-tools-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:429991bf-54ce-57e6-8e74-8e50e890c1f7", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-tools-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d64444c0-e89b-5f51-a3f7-b505e9613a03", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-tools-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cc83cc44-7e68-55b8-9be6-ccb6c08644b3", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-tools-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1a9fa5e8-26fa-594f-8fb1-8ba02c5f124b", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-tools-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:68e7aa08-1e3d-5959-a773-da4a5bc26924", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-tools-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:da769912-766c-5e90-97ef-5cfd14b0f8a9", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-tools-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:feaf568c-5087-57f4-8df9-1b87ad9cc809", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-tools-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:29ad3b19-d218-55c2-80e4-547831c47854", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-tools-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2faeafb0-2d34-5af5-be19-de2d7b0a1b9c", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-tools-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0a35b9b7-b63b-5489-ba0f-a516d195d6a8", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-tools-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d343ee05-7352-50e5-b8dc-f0737549db34", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-tools-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:df66bb7e-b83e-5ad8-ae01-6be7fa22eaf1", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-tools-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e436698c-5df1-56ef-97d0-510fe7137821", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-tools-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:02109d4f-ba3b-5dc3-86c1-9c0d926c2ab2", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-tools-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d74aaabd-b4ad-5740-a0c4-ea1028b814b4", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-tools-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:47946eb9-9935-50ad-b367-be634406ca0e", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-tools-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:82bde20d-ec44-576f-b270-1b74f14c0cef", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-tools-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:067bbd7c-0a90-5c44-8c53-42200dfcd7c9", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-tools-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:377927ac-e4f8-5ac0-b950-7f4b306d7b06", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-tools-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:85c83b8a-7d0d-5eba-a73d-caecfd62dea5", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-tools-common 3.5.11-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:523a7c59-5338-5042-bb91-fd82acb0126d", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-tools-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:69c4ca09-8443-5dd6-9ad5-ceb12d5ac9d0", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-tools-common 3.5.11-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a0a14b7e-4b40-5cea-8594-72b8e62b46f5", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-tools-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9e968886-ba36-5d92-b769-349d96d30670", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-tools-common 3.5.11-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bdd8b8fa-f76e-5329-8345-169c19a5a9f0", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-tools-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:744252b9-8662-5136-bc14-89ebb18b0dee", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.1 of org.apache.cxf:cxf-tools-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.1" } ] }