{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:2d3595bc-f34a-54aa-94c3-8e98e27cab2b", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.3", "type": "library", "group": "org.apache.cxf", "name": "cxf-tools-wadlto-jaxrs", "version": "3.5.9-tuxcare.3", "purl": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:8816ba8c-7dc4-5218-a713-ada1d6daa316", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:938edb2e-faaf-59b2-a49a-a95e7654d354", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ec95446d-33c3-53c7-89a3-9fee68443f63", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d5ad5d7c-9ac4-52f7-87c6-74d9d5ae05ef", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a2d1544b-bee8-5dd5-a3f6-e82e65f80f1e", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:cacd8781-40ab-5248-b04e-80dee039aa60", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:accb051b-0479-532c-a1ca-2f6cc628a0f6", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:62e4795f-4ea4-524c-8c3c-49612af88605", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:198110a0-ccd8-5886-9ca0-3365e1721589", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:516c1b43-8e9c-5c2c-b315-0c5425657cb5", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b2fc57b5-7126-58c3-a9e5-8f076adafcf4", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f25ecfd4-7537-514b-8800-e3da4d6f184a", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:60cfb412-6c03-5ae8-9351-e64ece722c7d", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2ccb5bf0-ba57-59cd-abcc-5074f3063cfe", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:648506b3-a0f7-5fcd-a1e7-d7f5ada41400", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:993f39c4-4775-551f-a3b7-99a5a79ec9cf", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d864dc14-ed28-584f-8ffd-c1aed7f2978e", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf:cxf-tools-wadlto-jaxrs 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f6a38b27-0a28-5ad0-9b18-b1d390710781", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:979db618-47f9-59d1-b56d-049120905344", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:40c549c5-c572-5501-b138-dcf5abdc6752", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6f1e0b43-99a4-51b8-9ab4-3859180e4bd0", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6bc13ea3-bc8a-5578-ab18-89bca80b7c35", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:75f61fdc-2faa-52de-9e1f-700ac6114701", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a431c735-9ee6-5d3c-9daa-5dfb1440aace", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7870e722-3cb1-58bd-854a-6c6770c9922f", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:05a3a9f5-862f-5029-a669-a26ce0d76df8", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-tools-wadlto-jaxrs 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a5bc47e2-4590-5af0-b35f-15c4af1c4f42", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a61092e8-a153-581b-9dd4-c52025a302d1", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:24666b8f-731b-5fc6-a78b-f4f0898da1d0", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5a5cfe25-3a1e-5385-b082-bdc0e567b304", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-tools-wadlto-jaxrs 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a9cafc6f-bdd2-5d72-a364-ba707861a540", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c3b01a76-0b39-51be-9a41-8f7acd3ab071", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1cb9c4ab-cde0-59de-a670-3af3b3c7ab05", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f9e92115-223c-591c-b1eb-c9253b097910", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.3" } ] }