{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:a5aab47e-370e-5220-8003-3115302c5c7e", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.11-tuxcare.2", "type": "library", "group": "org.apache.cxf", "name": "cxf-tools-wsdlto-core", "version": "3.5.11-tuxcare.2", "purl": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.11-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:bd9cbe97-0438-5fcb-800f-a810f13de121", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4cc1b4bd-d386-562c-9fc8-028bbcb13fd3", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9584ea8c-bfa7-535e-897a-48a3ba70b08a", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c6fd4b9a-a4f6-50be-833f-ee824d4e54d7", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:71cbaebd-8994-5c82-84c4-8835d4388745", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d87da0e4-03c6-5f9f-b4b7-bd8e775aba1a", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:de06af70-a3d2-5661-90a4-c75a43534506", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cc1e0aa0-260b-5ccd-a2dd-57291cf09f39", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8dc2728d-5303-5adc-8093-fbd473a19959", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a524e710-4318-5500-815c-552c57f165d4", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5b402173-f5b5-5c1c-97cb-97919941dd0f", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e61f7522-5701-5fb1-b5ee-a455bbdbe815", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b79b532f-a6c4-5e0f-8564-122ce1d09e83", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fc02b3e5-7c83-5440-9c2f-ccd98f6a9f33", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:642542af-2059-59d1-aa63-9df3f9544e4c", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e8bf1b03-0867-5e10-9125-89e488fdd5bc", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c132c011-91d9-55c2-a4f0-e0f28db3107f", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7e02ca72-9632-5ffd-99d2-bfa6eb557d04", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:55898462-3cd1-510b-afae-405637916b5c", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ac356c3a-e193-54e8-b82e-a657162f089f", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d58a78be-42d9-57c4-bc1d-56d1db4c0cb3", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:81178011-5b8c-5cd7-9fa9-0359579e3b29", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1c18bd2d-a5cb-5e42-8d43-baf1e0bd780f", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7811a50e-b4c7-596b-9e24-744c55d86ace", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:35c5b899-4c8b-5cfc-aaa7-be16ae293dbf", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b9d9a539-f401-582b-863b-57c7a424a79f", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-tools-wsdlto-core 3.5.11-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7e8cf975-7af2-559f-9681-17f1ee35f51f", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d98b6755-e3c3-5834-b6d0-8efd66de2399", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-tools-wsdlto-core 3.5.11-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:eddc2ccb-221e-5600-bb40-fcbf6d2f4dbb", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:972350af-2cf7-5720-b9bf-3a4c476334c7", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-tools-wsdlto-core 3.5.11-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:52718815-3d39-5197-8254-2370951367a6", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.11-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2ebed1aa-cb49-5286-bf7c-5be920e1c37a", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.2 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.11-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.11-tuxcare.2" } ] }