{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:85a8534f-420e-5db4-b5ef-882085cb7dc5", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.4", "type": "library", "group": "org.apache.cxf", "name": "cxf-tools-wadlto-jaxrs", "version": "3.5.9-tuxcare.4", "purl": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:2e42d6bf-7956-5287-9681-0e93811d8883", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7b283fbe-b19f-59f3-9ebb-978455c91f2b", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:85a3bb41-3234-5b23-9add-4c8fa57949b8", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:52754d99-9aa8-5ae0-abf4-fc894ead9519", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:69e6a806-5670-53d4-bf8b-83aff1fe3102", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7adade31-cb1f-534d-9748-42738d2dd251", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ace0ad29-53e5-5575-b2e2-0aa6ef1c892e", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b637d233-b072-5f1d-817c-c242cd75fc29", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:447377b8-a1a2-50bb-b366-e648b5ca9fae", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:9fc0dd88-1947-5446-8cb7-002ab885924f", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:397f9c35-d372-5b92-80c2-fe1947db4ae1", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d77a4082-da62-5fd1-b28d-5bd4f8d70a34", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e4478019-31c0-5b1b-8fc2-eb30cfb1621b", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:adb2066e-ed6f-5fa4-a0d3-04656adc9bb1", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ff1087d0-a5f5-558f-9956-c525e8ca0883", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f66c9304-a0b3-5484-b7bc-c627dd7d1ff2", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0a432e2c-f884-516f-b9e4-0c65a7c07866", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf:cxf-tools-wadlto-jaxrs 3.5.9-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3de0e591-b5d0-5207-b5af-304e127f7264", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:27a6aeaf-b7e7-5cb4-a403-272ff1d26b2a", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e1f91007-74ff-552b-91e1-a442aed59295", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:115c5998-245b-5646-be69-5b446e005220", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a745f578-fe0f-573c-9171-fbbb41eb9426", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3e0ab24f-426a-5257-bcb5-f88ee8567abb", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:6266b88f-f0db-5570-b48b-e29cae6fddf1", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:330232ae-7f29-5030-985c-c39b4d232a38", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:33771a9e-13d9-52a6-a477-2acc05bd2a91", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-tools-wadlto-jaxrs 3.5.9-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:bc294943-1886-5d9e-81fc-10bd9e878117", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a54c28de-9b6d-5623-a817-71f7000f972a", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2d9c18f7-b05a-5cff-ab41-6902aae42684", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c93119ee-6e94-50e4-a5dc-23e676c73d2b", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-tools-wadlto-jaxrs 3.5.9-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0429e538-2175-5281-bc66-e13b761985fb", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ef59efad-0264-56ab-9aee-4b82c717acdf", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4139a693-6634-539b-9caf-c1d35ad0c0ec", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:bf2b96fc-89a7-5e9e-ab98-85b582f25e60", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wadlto-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wadlto-jaxrs@3.5.9-tuxcare.4" } ] }