{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:69a3be37-ff6e-5dde-858a-2e66bc5915e8", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-tools-misctools@3.5.9-tuxcare.2", "type": "library", "group": "org.apache.cxf", "name": "cxf-tools-misctools", "version": "3.5.9-tuxcare.2", "purl": "pkg:maven/org.apache.cxf/cxf-tools-misctools@3.5.9-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:ecd6b17d-6956-591a-9812-9189328960d1", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-tools-misctools." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-misctools@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:41ea6775-9859-5590-8cb6-9f0f57c578cb", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-tools-misctools." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-misctools@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2195c3be-3fed-5597-888b-ebf1c996f791", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-tools-misctools." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-misctools@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8bab5ff3-fa3c-5643-a9b2-de744fe8026d", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-tools-misctools." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-misctools@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cc9cbc09-dce4-57e0-a939-efb3f8edc42c", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-tools-misctools." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-misctools@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:70938076-8427-5411-9040-a5e156314dda", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-tools-misctools." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-misctools@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:49568c8b-b61c-59f0-ade0-8a6b5ccf9d06", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-tools-misctools." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-misctools@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d4004a33-3b17-57bb-8877-9b10e0890351", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-tools-misctools." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-misctools@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c38332ba-8d09-57bd-9ace-aed89236644d", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-tools-misctools." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-misctools@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:65e539de-d836-509a-81f6-7c248ba53b6b", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-tools-misctools." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-misctools@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c5ff0a26-46c9-5691-ad98-ae977aecca6a", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-tools-misctools." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-misctools@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3e5c9841-228f-560a-8b39-b3ae9feb9ec9", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-tools-misctools." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-misctools@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bb803089-9a26-5a50-9dca-69e234c984dc", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-tools-misctools." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-misctools@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cfc7af6a-be69-5c27-818f-8ba3960cd7c6", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-tools-misctools." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-misctools@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:dbf4f48c-303c-5089-86b6-0b5548514cab", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-tools-misctools." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-misctools@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:55228c19-992e-55ef-8c98-b9c245ca1cd5", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-tools-misctools." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-misctools@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:212cb9e6-1da5-57cb-bd1c-056353259a27", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf:cxf-tools-misctools 3.5.9-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-misctools@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:46034aa4-00dd-55b9-bc5e-9c1efdd5659b", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-tools-misctools." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-misctools@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4d0eb1e3-020c-5553-89b7-a777f19a294b", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-tools-misctools." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-misctools@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:553a48ef-8427-51b5-bb5b-da5a44ebc2e3", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-tools-misctools." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-misctools@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e3f51d59-a1bc-5b8e-9d2c-a30d61fb1271", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-tools-misctools." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-misctools@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c00b051d-84e3-533c-b82b-2676f155c18a", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-tools-misctools." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-misctools@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d40660ea-4b6b-5abc-b2d6-b284453a3434", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-tools-misctools." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-misctools@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7829b905-ce46-5631-a03e-a886633b1876", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-tools-misctools." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-misctools@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b643d165-b637-52f1-8440-224e6f7073bf", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-tools-misctools." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-misctools@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3ee49da7-1fc5-57c4-b1bd-3e58e9900637", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-tools-misctools 3.5.9-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-misctools@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7a672395-7d4e-5bea-be77-5df3db12c4b9", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-tools-misctools." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-misctools@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4ac5f301-7975-54cb-a308-4149d134ec95", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-tools-misctools." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-misctools@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1278955b-8edb-5191-a8f2-2250a8685bde", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-tools-misctools." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-misctools@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a192cf35-6afb-5096-b17e-12d4915a5f96", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-tools-misctools 3.5.9-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-misctools@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:355e3889-4f44-5984-90c0-f2ee05bb81f6", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-tools-misctools." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-misctools@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bd09622a-ebd0-5ee1-8549-018af6d42c6b", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-tools-misctools." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-misctools@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d364a14e-7007-55f8-93a6-2a18ba98d66a", "id": "CVE-2025-48795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-48795 affects version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-tools-misctools." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-misctools@3.5.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d4cc9b6a-73a8-52e5-aa58-0c5ab64c212b", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.2 of org.apache.cxf:cxf-tools-misctools." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-misctools@3.5.9-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-misctools@3.5.9-tuxcare.2" } ] }