{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:3224c6b5-4a05-59e6-a768-415bbd684c7c", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-wadl2java-plugin@3.5.11-tuxcare.3", "type": "library", "group": "org.apache.cxf", "name": "cxf-wadl2java-plugin", "version": "3.5.11-tuxcare.3", "purl": "pkg:maven/org.apache.cxf/cxf-wadl2java-plugin@3.5.11-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:d6e4f38c-60fd-52b4-871a-e11d32ac832d", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-wadl2java-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wadl2java-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b9beb636-f936-5ca1-b29d-24e24bc2b1e9", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-wadl2java-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wadl2java-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6f05d997-2ada-53fb-aa35-4a24cd1ad235", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-wadl2java-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wadl2java-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ea6e3ab5-ec8c-5327-9cb3-26a086b21721", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-wadl2java-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wadl2java-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:abc816e5-588b-5289-adf3-db6f994edbe8", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-wadl2java-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wadl2java-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0fd40ba5-9b47-57e2-a742-5fa6b19a9287", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-wadl2java-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wadl2java-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:be848070-81b8-5dea-b901-39e8f9b02bee", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-wadl2java-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wadl2java-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ba9842ad-a982-589d-b17b-e7715c59ffae", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-wadl2java-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wadl2java-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6ec8e145-9c1b-5a76-8aba-0ae7dfc2184d", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-wadl2java-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wadl2java-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:340b5e68-58b3-5347-958b-d8199e706408", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-wadl2java-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wadl2java-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4df6e791-9deb-5860-852c-6d4979ee1150", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-wadl2java-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wadl2java-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e8f88143-024e-5380-a12f-33e5514995d1", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-wadl2java-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wadl2java-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f9f47406-190e-51af-ab0e-dcb9c96a7f19", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-wadl2java-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wadl2java-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:eb71dffc-301d-5060-9a5d-063445acde5e", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-wadl2java-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wadl2java-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:24b0257e-789c-5cff-a769-dfbe8ca8c881", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-wadl2java-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wadl2java-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d4452aa3-aed6-5075-900e-1bd8820f9eb4", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-wadl2java-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wadl2java-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:15a91ee4-a000-57e3-993b-4f1bd6b7458c", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-wadl2java-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wadl2java-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6439367d-46a1-5772-ba74-b5e5aaae0836", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-wadl2java-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wadl2java-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bc772886-f504-56bb-80a8-dcf43bfc150e", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-wadl2java-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wadl2java-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d220701b-3744-52e6-acda-c8b7994cb2fa", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-wadl2java-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wadl2java-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:87776729-dfd6-5bdf-9f5d-3a94b4adc26b", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-wadl2java-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wadl2java-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ce8a200a-fffb-5dee-8341-3cf07e01b019", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-wadl2java-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wadl2java-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:696155b7-6890-5df1-99f8-a77c20cbe119", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-wadl2java-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wadl2java-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a0b36122-2db0-5631-b37d-5f686a473e8c", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-wadl2java-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wadl2java-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:89e8d5e9-79f3-5382-a7c5-a265afc2cf3d", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-wadl2java-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wadl2java-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1b160ef0-5675-5720-a407-bc777b1eaa61", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-wadl2java-plugin 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wadl2java-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a41af31a-f409-55d1-8981-369a310f587f", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-wadl2java-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wadl2java-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bbca0b7b-b56b-5b5d-b5fa-525421f98f6e", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-wadl2java-plugin 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wadl2java-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:aa3cb86c-3e55-5268-afb4-6621a3bd59fe", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-wadl2java-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wadl2java-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4b847620-396d-57af-9fe5-ac71a793f8a3", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-wadl2java-plugin 3.5.11-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wadl2java-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9a4a6622-2287-5133-982e-20c887472e4c", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-wadl2java-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wadl2java-plugin@3.5.11-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5c776a4b-9938-5e51-aa66-35c4f10bde4f", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.3 of org.apache.cxf:cxf-wadl2java-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wadl2java-plugin@3.5.11-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wadl2java-plugin@3.5.11-tuxcare.3" } ] }