{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:7f34d96b-de6d-5822-a8af-a6336ceffd8e", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.6", "type": "library", "group": "org.apache.cxf", "name": "cxf-tools-common", "version": "3.5.11-tuxcare.6", "purl": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.6" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:de6b25bf-a9d8-5ecb-8201-393b674f8511", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-tools-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:fb03a2f3-9f49-5407-a539-02eccb561948", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-tools-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:526d501c-8e29-535b-8016-93b733a6adf9", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-tools-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:182d4d91-d244-5e1f-8ac7-9f71b34527d6", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-tools-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:bfa72573-c220-549e-92dd-f3352401b646", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-tools-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:3491c544-6d6d-5946-9b49-d9bfb6467e2d", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-tools-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:f02448d8-16de-565f-be0a-8d221e0b80ec", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-tools-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:e6b37c75-768c-5a8c-a18a-4fb0085e801f", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-tools-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:c94b2cac-a4fa-5252-a096-7f59bace138d", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-tools-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:1850090b-ec57-5975-95b8-85db3864b2c6", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-tools-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:265f494d-0fdb-55e6-ac57-e2489af28dc5", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-tools-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:7d129a46-c4b6-5d02-97a8-7f03116f23c7", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-tools-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:a18df759-171e-5b97-8766-2ea7ea584924", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-tools-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:4cc2d313-beb7-5d38-8b07-cae0695cff05", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-tools-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:4b904dd9-a0c7-52be-8f0b-943fa4d4ec57", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-tools-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:592b4ae7-74f9-5799-b37a-492a56d7e621", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-tools-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:db8e14be-1419-5894-9b22-c72c13c58073", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-tools-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:977067db-e123-5ab3-9847-6aa32a0ae16c", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-tools-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:b77871be-d839-565b-9e34-693e4f095807", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-tools-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:50d7f8ad-6164-520e-acbe-4b541848a66f", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-tools-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:a5d16013-29e3-53ce-a9cd-f1bc6ab814e8", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-tools-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:e6141c08-0255-598e-9114-782073db825d", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-tools-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:bccbdfdc-e52b-5f9b-b21d-23635c879017", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-tools-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:92929817-6bea-565a-8194-ec3c31127614", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-tools-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:d886110f-1f91-5f1c-b0ab-1ee81984b271", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-tools-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:4473ab53-4407-5385-a268-6d8372d5afee", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-tools-common 3.5.11-tuxcare.6." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:f2ab3502-6696-56bf-bbbe-2a7a1ff6a668", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-tools-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:d7a00717-54ef-564c-a007-44d4bc8c7daf", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-tools-common 3.5.11-tuxcare.6." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:a5eaa51c-3390-5cd5-bbef-ad2cde5bcbe1", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-tools-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:363f3839-03a8-5a58-a27d-93e1a8a6a3a6", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-tools-common 3.5.11-tuxcare.6." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:ec560187-c2ad-58f7-88ff-a4ea574ad147", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-tools-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:28eb195d-1312-5355-9acf-d03810837ee5", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.6 of org.apache.cxf:cxf-tools-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.6" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-common@3.5.11-tuxcare.6" } ] }