{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:a9d0c342-83a9-5578-9129-ba53939b8456", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.3", "type": "library", "group": "org.apache.cxf", "name": "cxf-tools-wsdlto-core", "version": "3.5.9-tuxcare.3", "purl": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:8a1654e1-e7d2-58a5-be43-4eda35e0fb29", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2f5c7dd4-fe3d-5199-a614-3dc7602c3ff9", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8dd7062f-999b-5e76-b218-d44379eb9229", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f0f0cb6a-ff0a-548a-9626-e11cfc242001", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bd1ebdf1-a53d-5b78-91b1-11b06eb0eb1c", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:64e341dc-c9bf-5561-a8a2-e66208f8a325", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a4478c7e-d0ee-50a2-a7b5-b02fb67a9b4b", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9abd2070-7cca-50de-8de6-6b87a68c2b6a", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2d5d8160-4b7f-55b3-8122-1f34067a4f5b", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4c338d3f-69f5-5e31-b4db-19e61bd07980", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e8548f51-7410-5129-8722-a8148d869b4a", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6321a90f-6e8a-5592-a437-2c94e4272e7d", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:73b32954-b78e-571c-a7be-804f642c4a0a", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d9d8d267-8f18-5ca9-a53e-010987dfc1ca", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a38ee661-424b-5cc6-8751-35518585abd2", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ae8eaa9a-b063-59a5-937a-a67de53c8fba", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a137a60e-aea4-53c8-a844-0fc71381e795", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf:cxf-tools-wsdlto-core 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:64cd4730-1219-5af2-b7a0-b5fb4e31cf8b", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:685c82e2-bb3a-5ef6-ba9e-e4ca7ef193d4", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b057bab9-4b11-5bf3-8f45-cbc87622d550", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5af50842-4024-5325-9266-9f7033c56761", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bc557952-a095-5130-8822-077b04be2b5e", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:09de0e98-87c5-50e2-9240-1b19eddf495d", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9a582de9-c353-52d3-8e24-64cfdaa0a069", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:987f7cb0-33db-52a0-88ff-69e4dad2b6c7", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c8263185-24d3-50da-8015-58f7855a0e41", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-tools-wsdlto-core 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1a3a9368-1b00-57de-8df8-4b57e8383eaa", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9198d28e-f246-5b43-ac05-6a3e6557b84f", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8d6cfde4-ddec-57e6-834b-c75a444dd37d", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f58d1f69-1cd2-5636-8557-738f6f14bb24", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-tools-wsdlto-core 3.5.9-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:67c5bc35-af4b-539f-9c88-f933cc459597", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4aa122ed-8679-51eb-bc21-c18c5ccdd2ee", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1ae0613b-6295-5463-add3-cf8553b74556", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:78c52931-d4b1-58a0-8016-dacc5b4acbe7", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.3 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.3" } ] }