{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:650d88bb-5cc7-5721-bfd4-c71970e11877", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.4", "type": "library", "group": "org.apache.cxf", "name": "cxf-tools-wsdlto-core", "version": "3.5.9-tuxcare.4", "purl": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:c55bbc0b-1091-5ed6-8057-d48a182cf9f8", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:19aa58c4-8139-5c91-a64f-656eff466d94", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d7ca64ca-f600-549c-a099-519321f9e681", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d20a0633-b86d-5963-8814-384732c2091c", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4f3af28f-6543-5003-ac6e-2b31c61a6179", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a0b85322-9520-5aac-8bbc-9fe437910dc3", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:89b8cafd-512c-5ee4-bdaa-bc57bac371c5", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e74b1f88-3da5-55b9-8212-231499060608", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:58ed9b4c-589a-5a24-aac0-b5f8c167a818", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a7e028af-8d64-5211-afa9-0f4b840c9156", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ab5f4e78-b6b8-5351-897e-3170642cb0e9", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b1676416-8dea-5eda-b34c-6f6448e43f90", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:952ba6a6-e549-541b-9784-59620075e0db", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a073132a-ff7d-59f0-bd3e-2e7a5f89071b", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ac1de84b-1f99-5688-a76f-349b4d378cd1", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:336970a1-6507-5381-a254-4de0835fea9a", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:19849542-fb5f-5b93-b88a-c3c96fca657c", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf:cxf-tools-wsdlto-core 3.5.9-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:da221980-a883-54d3-b7f8-c68a898e6446", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e1a1e15a-e4ac-5db8-a935-ff2155ec4226", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8ccfdaf3-3b8a-59ed-ae00-acbebfa0be42", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:50275efe-cd2f-50cb-aa15-84276e56c668", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4eda6e8d-a1af-5ccf-b305-7a130e8c5a45", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3ed11dbe-b2e2-5ef0-a9ff-b61f6cf8ff6f", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8f216dff-65ff-50da-8cbb-114a1c3c1017", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:956ef67e-ccab-526e-8e3b-9c94b9a03884", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:5e76af09-238d-5a25-bb96-d44138f3b97f", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-tools-wsdlto-core 3.5.9-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0504ea10-f4ea-5bb2-b3a6-8285ee86c386", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f5088534-7c9c-59a4-a4ba-aae415c2ca25", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a713c114-2d25-54c8-8774-bf8554267876", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:55a8107f-a8ee-5693-b0ea-5371619e880b", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-tools-wsdlto-core 3.5.9-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:91c54b85-3501-5d80-a2c2-0cdef39d6a36", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c3b05797-9711-50ad-90b6-2747a2b8efc7", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:72649306-591b-546f-a4bf-7fe2df38870b", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e326179c-94d8-550c-b84b-c8c51d68305b", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.4" } ] }