{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:7430c1b7-ae88-53cd-9036-4980fa6ee373", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto@3.5.9-tuxcare.4", "type": "library", "group": "org.apache.cxf", "name": "cxf-tools-wsdlto", "version": "3.5.9-tuxcare.4", "purl": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto@3.5.9-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:84602b83-0056-5d78-a5dd-9018ae6af47f", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wsdlto." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e983fba7-dcae-5526-820d-ca85ce3afcdd", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wsdlto." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8cffc070-9a13-5699-8aa7-37f1faf0d78c", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wsdlto." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:895ccdd4-6c5b-52e3-946d-7128613d55a7", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wsdlto." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c9fdb7ab-addb-5e70-b683-550632c7bcd0", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wsdlto." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:6b533189-9c3d-55b9-acf6-f2bfdc1d89a7", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wsdlto." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:fbf3b3b3-1c3a-5c04-98af-b05b62f9879d", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wsdlto." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2bb55b73-f5b9-53d6-ad9b-5fdf13db4d06", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wsdlto." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:be77fb2f-bd89-5a17-b171-e7f440d71b1b", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wsdlto." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:158e424e-00f6-51d1-a1f1-8e6610be9d76", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wsdlto." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3fae359c-3213-51f1-b1de-8788b312cf8f", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wsdlto." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:1746e4d1-1268-5302-9ca6-a75715fc92b8", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wsdlto." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:6aa368a8-ead0-50ec-8c88-d4a834d50074", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wsdlto." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:05afec83-f88e-5857-b3d3-bc81ca660219", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wsdlto." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:da816215-c9fe-591c-9fbd-8a796ba9c15c", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wsdlto." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:cc5bb139-ff7f-5cd4-b67e-6eb1a2bc68d6", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wsdlto." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:34e004ba-4ef2-5049-b970-529ce333c7e4", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf:cxf-tools-wsdlto 3.5.9-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c28ba12e-7b0e-5d84-a764-435143893958", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wsdlto." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:72480613-4445-58c2-8d05-678ae1f1f321", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wsdlto." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:106288b5-6060-5619-9907-019159e535a8", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wsdlto." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:093920a2-cee3-5343-82d0-ec3a4605ecc1", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wsdlto." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0a7d501f-aa19-5aa7-b138-a57e57e15b1d", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wsdlto." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:fa6893bc-2067-5d46-98b0-d84f8d8abc65", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wsdlto." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:cadae6c7-30c7-5e5e-a463-8d12ee772e0a", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wsdlto." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:cd5b8c1a-e250-512c-9764-58d910daca83", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wsdlto." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:965f6efb-64eb-5656-adbf-a167eccdca28", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-tools-wsdlto 3.5.9-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d7e567a2-29ec-5b4d-8d94-601d0928ec6b", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wsdlto." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:48836d62-e0ef-53e4-a72f-e47805e522fa", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wsdlto." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:587b6cf8-bd1d-5fce-8f42-1541e30e764e", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wsdlto." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:6f16751c-df70-584e-b997-9d3c7a375937", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-tools-wsdlto 3.5.9-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:24677d0c-0fc6-5039-a8c4-6b33485c2972", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wsdlto." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:eaca9beb-29bb-5a07-b513-b0f165543a27", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wsdlto." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7bfc683b-2a2b-56be-82c2-54d1c20e13ea", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wsdlto." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:1b891044-067e-58ec-832e-d87e345747e4", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-tools-wsdlto." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto@3.5.9-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto@3.5.9-tuxcare.4" } ] }