{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:e2265c54-9abd-5d6c-8217-ea75896718c2", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-databinding-jaxb@3.5.11-tuxcare.5", "type": "library", "group": "org.apache.cxf", "name": "cxf-tools-wsdlto-databinding-jaxb", "version": "3.5.11-tuxcare.5", "purl": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-databinding-jaxb@3.5.11-tuxcare.5" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:703fdb7f-e3dc-5a84-83ca-780e6e1734d2", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-tools-wsdlto-databinding-jaxb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-databinding-jaxb@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:4f95a9e5-f270-5726-a283-e3027af0d08f", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-tools-wsdlto-databinding-jaxb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-databinding-jaxb@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:6ee018cc-3973-516e-8037-c955948d9246", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-tools-wsdlto-databinding-jaxb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-databinding-jaxb@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:a4572588-144f-5b45-90ec-f0ec9cf28eab", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-tools-wsdlto-databinding-jaxb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-databinding-jaxb@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:d8f37c10-d21e-56eb-b421-9c9b00ee0b7b", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-tools-wsdlto-databinding-jaxb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-databinding-jaxb@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:143364c0-6769-54ba-8cc2-6e7a006424eb", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-tools-wsdlto-databinding-jaxb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-databinding-jaxb@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:ce97f820-c0d6-555b-a804-ae093a3dc8d5", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-tools-wsdlto-databinding-jaxb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-databinding-jaxb@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:d34130ee-2ab1-524d-bafa-2a18c336f7e1", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-tools-wsdlto-databinding-jaxb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-databinding-jaxb@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:8802b3f7-3eda-5ec6-afe0-16e6ad91c477", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-tools-wsdlto-databinding-jaxb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-databinding-jaxb@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:cb523a59-42a9-59f9-a90c-ad99976ca7c8", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-tools-wsdlto-databinding-jaxb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-databinding-jaxb@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:a66c89df-b6b1-5670-afb8-ed9065f6e7d7", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-tools-wsdlto-databinding-jaxb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-databinding-jaxb@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:2b06cf7a-2ba2-574d-a1eb-f329789f0be3", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-tools-wsdlto-databinding-jaxb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-databinding-jaxb@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:67b34fb4-2f8c-5a11-b423-b89043b80547", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-tools-wsdlto-databinding-jaxb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-databinding-jaxb@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:012f656a-f59a-5cad-a863-f0aa7779b50f", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-tools-wsdlto-databinding-jaxb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-databinding-jaxb@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:f6414e6a-8841-501e-9747-69a711ec5cdb", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-tools-wsdlto-databinding-jaxb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-databinding-jaxb@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:4fba5e92-4e5f-5ca3-9fdc-3ead9ec3defd", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-tools-wsdlto-databinding-jaxb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-databinding-jaxb@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:df65cab5-0fcf-5d85-891c-725a1f2d3b94", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-tools-wsdlto-databinding-jaxb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-databinding-jaxb@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:14c5ca38-6fb0-5b19-97bc-214ba4493180", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-tools-wsdlto-databinding-jaxb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-databinding-jaxb@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:bea66d2a-95ce-52fa-aa99-3519935e9b58", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-tools-wsdlto-databinding-jaxb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-databinding-jaxb@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:7828b35f-bf1a-5acf-9d73-a780ae05d2bf", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-tools-wsdlto-databinding-jaxb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-databinding-jaxb@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:755670d6-a3d3-5f0a-b7f2-f7b5a1efb876", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-tools-wsdlto-databinding-jaxb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-databinding-jaxb@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:b274078f-dbe6-5610-9a08-6f56bcbb6c97", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-tools-wsdlto-databinding-jaxb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-databinding-jaxb@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:3bc7c08c-9444-5fc3-95f8-0080edd79a36", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-tools-wsdlto-databinding-jaxb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-databinding-jaxb@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:afb03152-5d33-59e2-96e5-68d2e192ccf1", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-tools-wsdlto-databinding-jaxb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-databinding-jaxb@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:a4f2e942-f9e7-50e5-be56-eb5df1c57035", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-tools-wsdlto-databinding-jaxb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-databinding-jaxb@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:609acdae-c590-5c49-8d20-14cc5761e252", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-tools-wsdlto-databinding-jaxb 3.5.11-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-databinding-jaxb@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:b4d7f690-41ca-5edf-99a7-da936f353860", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-tools-wsdlto-databinding-jaxb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-databinding-jaxb@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:ec9f6383-8eae-52fe-8758-33fbe1cedef9", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-tools-wsdlto-databinding-jaxb 3.5.11-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-databinding-jaxb@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:1aad73bb-f20f-57ba-ade7-039c7510f79e", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-tools-wsdlto-databinding-jaxb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-databinding-jaxb@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:98133e6b-cc81-501b-8348-32d87f7b4db2", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-tools-wsdlto-databinding-jaxb 3.5.11-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-databinding-jaxb@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:ec0ba5a5-9063-58fb-8658-048350cd23c3", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-tools-wsdlto-databinding-jaxb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-databinding-jaxb@3.5.11-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:14e2d4ea-83fb-52fb-a35b-05b13bfcae22", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.5 of org.apache.cxf:cxf-tools-wsdlto-databinding-jaxb." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-databinding-jaxb@3.5.11-tuxcare.5" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-databinding-jaxb@3.5.11-tuxcare.5" } ] }