{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:f4163581-dc74-5cf3-8c30-3eeffc3c4b9c", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.11-tuxcare.2", "type": "library", "group": "org.apache.cxf", "name": "cxf-tools-wadlto-jaxrs", "version": "3.5.11-tuxcare.2", "purl": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.11-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:5a0a1627-f851-5933-82ab-5c64a44e2306", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f9936b65-e445-5635-a65c-893ded5f726c", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:12732b89-b9e1-5c4a-bdfa-9baa99b555fe", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4144fcc3-8298-587d-80c9-55315f169566", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:036d33ce-3c0a-564d-bd47-1cb58cb230e1", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9a666152-a223-5bf9-beb8-cb83f9710173", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:159af1ae-cfe9-5403-b4f8-f96e795a5253", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:17b69764-2baa-54cb-9128-f52013255a95", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a4f53124-7fea-53d2-8f4f-c0d20f7887f8", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ecc0eae9-25f9-5873-8b4c-5d025dcd2796", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f4e3bb29-b376-5e53-8531-bd9cf16a361a", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5ead0c2c-08dd-595f-9e58-e79d0d0331ee", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:19a431a8-f7cc-5bca-b338-b52612b7d2df", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a45eb7b0-5c40-51ba-82f3-8a61111707a8", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:45f58820-da8a-5fbe-b67d-1cc5a6d74394", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f08e228b-9e15-50f7-91e0-76d3195eeaf3", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:693a7f61-5a0c-59b9-b6ce-dcae740ffeac", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c0918d47-d4a7-565b-9b98-ca5bc18e9264", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0358a242-0f2a-5962-83e1-d03b8dc7b748", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:658a4821-4131-5429-b4bd-67ce2b556bae", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4298b92a-300d-5ca7-aa90-2707a734ef86", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a6d76cad-6b14-50a3-8849-566eeaa1f50b", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:523b9261-6689-5254-80d9-89ebd4dada89", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f24eba20-35a1-5f3e-bd25-78a4df9ae3a9", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fe6d0d2c-cf69-5f6f-ba9d-e9ce1adf0f18", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:50532641-7474-5996-b450-2b1f67941323", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-tools-wadlto-jaxrs 3.5.11-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:96f37221-d9a8-5313-963c-07efc8fb5b8c", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c797d7eb-f083-507d-ac5c-41fb95ccd7cd", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-tools-wadlto-jaxrs 3.5.11-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1edee5fd-6b90-5957-8a35-7ef72d8bc020", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:35b92e06-3cde-54ec-91b1-8c0b6825c827", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-tools-wadlto-jaxrs 3.5.11-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bd5bc307-f261-517f-a3b4-a43473d3e2a7", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b22f6e04-6b83-5569-bf9c-a2a2a0c4e3c6", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.11-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.11-tuxcare.2" } ] }