{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:c1418420-b085-5142-9641-7a1c61d1a54c", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.3", "type": "library", "group": "org.apache.cxf", "name": "cxf-tools-validator", "version": "3.5.11-tuxcare.3", "purl": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:6a39046c-825f-591c-89c5-f5f017c50f5f", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3c806cef-0bc5-59e8-8c4f-59b38259856c", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:eb7e5bb3-ec4f-554c-b1e3-4689e4518a91", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:17d41ac4-3431-5eb2-b6ca-2ef760376657", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:31602360-4538-5880-ac0f-bcbfc05fc8e8", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9a5941c5-399e-504a-8db5-7dfbdc21e4ed", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:274f8130-4980-59dd-b023-89b853cef3a9", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7a5a48eb-d37f-5a92-a494-029b45508d4b", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6426fd1c-cfae-5702-a2bb-84db14971176", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:97dea3ba-9f00-587b-b398-32303232df2b", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ad7dcff5-11e7-5a9f-942c-eb686c32b6f8", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e71d6561-b78d-5fd1-8cf2-3c7cb8618247", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0cc28f01-fdfa-5ab3-b7bc-55db29c42823", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b2187fe1-d6d5-5fa9-9be7-ce09f5a32df4", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d3abb5e2-6655-518e-9e46-48aed83cb781", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6efb9893-dc1d-5c43-9402-8d3a3c03585e", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4afd62de-7b15-54bc-be40-c2dba61c86c9", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:30bec1cc-665e-5adf-8c35-f33ea808a4cc", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:94cfe78b-3ddb-5ac5-bdb3-d245c344673c", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f80febc5-b64f-5332-b49d-ee80f109f60a", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7cc7ade0-8d4e-504e-8b4d-27ee3a5934a5", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3bc24957-d480-54e2-b450-98e094ef698a", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f11a042c-efd1-5a98-ac64-8fae6f93aa59", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1525ad9d-574f-5c34-bd0c-c233ca66bb9b", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:735b0cd2-021f-508c-a7a3-e86d0a2aab2e", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:485a89dd-7e02-5ffa-9803-c200b0f2c528", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-tools-validator 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5a793fa8-c0cf-58de-9f12-89c23ab942f1", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b79fd585-6b33-55d0-8258-815ca1561fff", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-tools-validator 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2e7f5742-89be-549e-90ae-e58c4bb233db", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ec1e0af3-0170-5434-9ac6-df2a7ca43724", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-tools-validator 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:34143499-3fa9-5779-b914-ab346a156ee4", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:533886d7-f8e8-5da6-abec-c36d69372868", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.3" } ] }