{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:e08d4a5c-c431-5ddc-a711-dbf973de7b22", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9.tuxcare.1", "type": "library", "group": "org.apache.cxf", "name": "cxf-tools-wsdlto-core", "version": "3.5.9.tuxcare.1", "purl": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9.tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:93fe59f1-bb8d-5b66-ac50-37460ed527e5", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:19129400-f109-5035-b54b-c3135752daf0", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:81f86273-98fb-5f76-a32b-4f0a2974e32f", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c63329ef-cb51-5a43-bf79-c592b8756f05", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e223d296-5279-56d8-b41a-80a00332a11f", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dd858db9-ff8f-5190-8e6e-cff5ecca20c2", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:461f0682-4a66-5aed-93ba-12703361e459", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5a6dd030-85ac-5830-9d7b-eefc4b25fc77", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c7df0fea-d3b5-5246-a29b-8c77060293ab", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7e5c7bb0-8823-5d00-9675-8d2060068600", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d78fe1e8-7050-5396-b8bd-cf88d425bdf9", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fe6d3a84-c203-5f3e-8228-bd8afb8defe1", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c6d60789-7f90-530c-ade4-bb4ee98a3664", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0b6a0721-bde4-5817-adf6-533ca8c568e5", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0a9233b8-0a0d-553a-a32f-711c42e6f1ec", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9b2ddd08-6dde-53db-950a-124348bd95bc", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8a60cbd7-0ad0-54cf-84a9-7ed85dedbad0", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf:cxf-tools-wsdlto-core 3.5.9.tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:38a9003a-6b49-58d4-b91b-88d74d805ea5", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:233cc08a-8190-5fde-a82a-010a21d274f4", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8e1da1aa-d241-5c22-8500-4dff0ac6bd0d", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ba09614c-09dc-5641-af54-150f78cf9708", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0eee042a-41a5-58c9-8084-9641d4463848", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b2800748-a54f-5fe7-9bfb-6e10f744dd81", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f073fde6-867f-537c-ae78-7ddbdcaf7887", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0576f7da-d09b-53e9-a435-25d967ce6ab1", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5a2821e4-e085-5b43-a33a-a24a66c86a46", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-tools-wsdlto-core 3.5.9.tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:da7d20dc-1e32-5552-8da7-09830e27aae6", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:01f0af74-abfc-5c56-857f-73052c4a6129", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1aba2d09-2c01-5d94-b912-21566c3fb9b8", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:afc3e0fa-938b-5db3-a187-8e83ae8c756a", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-tools-wsdlto-core 3.5.9.tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0e5004f8-e0bb-5311-9686-6a802a18f320", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2e7a67b4-4359-544a-8fc9-7e27004c33b0", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bec28c34-6a0c-584c-835e-36f38d8af0d7", "id": "CVE-2025-48795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-48795 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8c7b84d9-18e3-583c-92c1-f0bca7373e1f", "id": "CVE-2025-48913", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-48913 affects version 3.5.9.tuxcare.1 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9.tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9.tuxcare.1" } ] }