{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:356205aa-a1f3-53d6-82d4-4b2e9654e634", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.2", "type": "library", "group": "org.apache.cxf", "name": "cxf-tools-validator", "version": "3.5.11-tuxcare.2", "purl": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:f8b5f42f-ec24-5da9-a0d9-6908ffec8c8c", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d79b11cf-4c56-5434-9bfe-4dcbd69f798e", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0318efc4-2bc9-52bb-a448-ba7a674d3762", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a67242ef-eb54-5f70-80ff-0adbe2235ce2", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9f812fbc-4eb0-5b26-aadb-bbee15e6d71e", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:622b0574-f3ef-5bf1-a114-d4f1f3a363e2", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f757726b-90ce-5224-932d-170a708b4bf3", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:928c0aca-bde7-5ed5-b228-ee996ecc9ddb", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6044e397-9f6a-59d8-9d89-88d7fed1d01d", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:80792026-fd57-5e6b-949d-7b045c092c10", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ba5d3a0a-28d4-5fd1-a517-916ff88a4a23", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:eb7178c0-b16f-53a8-8a62-b4ddb141bfbf", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b8a80193-3372-541c-bbbc-6406958b8d97", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e97182e3-2264-50ba-80bb-6e8fdb9741f8", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:87847e69-b87b-5182-8dff-161349ab9ef2", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e1ec12a8-9248-5626-8692-93ac2d4883e1", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7a2efea4-3ad7-5739-be00-07b0481c14ce", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e697dfec-d6d5-5a4d-892f-d70ebedab42a", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1b0bb1c0-496c-5369-8b32-64fd6c8fba96", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e05e6a12-bfe7-54c9-839a-e5c5b857b324", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6f205f15-ff4c-5cd7-a55b-5a0dd912e2bd", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f2f2a7f1-4b86-5fa6-9672-97f458cc3732", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2f0e0741-6f66-5d24-9d01-c8947e78b7e9", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a2a70527-b620-5115-955a-a85bcdf542ae", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3b43752f-1c9b-5e8b-98ca-3dcb0cff3352", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8065beab-6a4b-5bb8-8f38-67399fe15d95", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-tools-validator 3.5.11-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ade10065-acdb-5404-baa5-168d756c23fd", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a412654a-3789-5f54-969e-d8fd3e098e1d", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-tools-validator 3.5.11-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7ea52972-b89c-5b77-8c75-7e51169bc780", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8b2418a2-9aef-593d-8805-f0521ec2f272", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-tools-validator 3.5.11-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a4401921-b361-565e-8da9-4df0041a4380", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f9ea865a-bfd4-5759-aadf-955812d843f9", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.2" } ] }