{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:17eb7040-6119-595e-a4a1-d7eb446dfc70", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.4", "type": "library", "group": "org.apache.cxf", "name": "cxf-tools-corba", "version": "3.5.11-tuxcare.4", "purl": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:fb29caac-73ae-5753-af3d-1334446d56dc", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-tools-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:79356ce1-c9df-5ae6-beb6-71eb4eb771d0", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-tools-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2e139ca0-d0c5-5a35-a03d-416fb6118af7", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-tools-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:66df3f8d-2f7e-558a-b2a5-5393b2687145", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-tools-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e36aac97-2a5b-5fc9-a610-9d7bbd95d722", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-tools-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:05d8d596-55e5-567d-9026-839f1babaa45", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-tools-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2359e46c-85c2-5398-96ec-e59f959ee1af", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-tools-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:43b3ceb8-f9c8-5521-9698-5c74d0b10bc2", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-tools-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:db127042-f46b-5af5-9f90-70ae9b663cb4", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-tools-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:46dec7a0-6777-5ad6-8d68-57aef419768a", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-tools-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8b5cadb7-0dc2-5344-aaf5-4299b43ba255", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-tools-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:9c4dd9a9-f1b0-5f26-8f64-8622e5107209", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-tools-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0ecfe855-0e9f-5f59-9211-8920bcb8fe62", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-tools-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:22cbe2ce-8f70-5eb9-adb7-31d8b1a9f812", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-tools-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:23b7a532-d661-57de-9287-b46fbf9db488", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-tools-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e1c091c1-9034-5a51-9dac-1e0fa0724950", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-tools-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4941890c-4a7d-5e6d-85ee-068408d745b2", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-tools-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2691b8a0-3984-5b8d-8624-a2a4f8bee3f9", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-tools-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c6177fef-8bfe-5b8a-8714-7019065120ae", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-tools-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:9bbdb7dd-b70c-5272-af72-810362066e78", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-tools-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e33fff7e-4051-5cf8-a4d2-6198825c58a4", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-tools-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:444e93c8-660a-5c67-86a1-4db4057d73c1", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-tools-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e0fb4b91-aea6-5cc0-b180-ea17d19466fb", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-tools-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d5dda686-a259-5876-8629-b2c4bb1f8663", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-tools-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:421b8a6b-62af-5e9e-b139-4a8a3889f1d4", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-tools-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b360ad44-4691-56fc-9c25-246170ae321b", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-tools-corba 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4836d71a-d409-530d-878f-de100fc1658f", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-tools-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:dffb594f-26ef-5928-822a-11a40bf6a86d", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-tools-corba 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:07c4d412-f882-50d9-b3fc-223be3f468c9", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-tools-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:33a6a9fb-ce79-531f-8cd8-349d10aa1575", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-tools-corba 3.5.11-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:47ea7727-0d3e-5c6e-8e50-7dcdd44259ad", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-tools-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:765937aa-d3bb-5f18-b6b4-8ba32e1561d9", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.4 of org.apache.cxf:cxf-tools-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.4" } ] }