{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:167547d6-1884-5cc7-85df-2ab762ec151e", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-wsdl-validator-plugin@3.5.9-tuxcare.4", "type": "library", "group": "org.apache.cxf", "name": "cxf-wsdl-validator-plugin", "version": "3.5.9-tuxcare.4", "purl": "pkg:maven/org.apache.cxf/cxf-wsdl-validator-plugin@3.5.9-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:c832fc9b-d0c5-5c58-a4ff-7d18e4e41fff", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-wsdl-validator-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wsdl-validator-plugin@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:97b08cd5-108f-5ca6-b0b2-965c611cddf0", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-wsdl-validator-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wsdl-validator-plugin@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f4c3e426-2dd3-563c-97fb-227ac02395ea", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-wsdl-validator-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wsdl-validator-plugin@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a87eefcb-3644-5d27-b172-f8eff5a43527", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-wsdl-validator-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wsdl-validator-plugin@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:bf04cfff-3c01-5017-ae18-d89bcb4350d1", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-wsdl-validator-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wsdl-validator-plugin@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3a90c8f1-043c-51da-88a3-526c229d71af", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-wsdl-validator-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wsdl-validator-plugin@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3e77cf9d-d5ce-54bf-933a-049d3e30f0eb", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-wsdl-validator-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wsdl-validator-plugin@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:9a4ac388-3081-5fbb-9823-6bd14f4c6cbc", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-wsdl-validator-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wsdl-validator-plugin@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c594b874-1672-502c-ac09-45b65eef1b53", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-wsdl-validator-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wsdl-validator-plugin@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:61054b82-5d63-52d2-b0b4-4b595425e625", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-wsdl-validator-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wsdl-validator-plugin@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:97c1c1d3-9c8b-5790-88c0-ab1f25dbec7b", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-wsdl-validator-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wsdl-validator-plugin@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:49b831ac-1217-580d-b6f4-dc1a6d59727a", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-wsdl-validator-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wsdl-validator-plugin@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e27daa4b-9f06-5e5d-a5e5-ab35dfb31c66", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-wsdl-validator-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wsdl-validator-plugin@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8feeb6ef-c681-51c4-b8f3-34ea46d30158", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-wsdl-validator-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wsdl-validator-plugin@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3498a819-5860-5abf-bb4d-8ad9b3c4fc40", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-wsdl-validator-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wsdl-validator-plugin@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:dc380f77-5b59-51e5-9c68-33216d549e09", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-wsdl-validator-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wsdl-validator-plugin@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:9db65c71-21b3-5df8-bb8f-35498db0ed5a", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf:cxf-wsdl-validator-plugin 3.5.9-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wsdl-validator-plugin@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:aa221468-2590-5b7e-afd1-01f953790451", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-wsdl-validator-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wsdl-validator-plugin@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:6a8dd07c-e731-5148-8afa-a9c271f04ab3", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-wsdl-validator-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wsdl-validator-plugin@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:1dad6f85-a35e-5389-ac5c-a679adbd5145", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-wsdl-validator-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wsdl-validator-plugin@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f7d8af9f-d55f-503a-9438-4cfbea635772", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-wsdl-validator-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wsdl-validator-plugin@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:73fb7c22-2e76-5af6-bf3c-7e9283b4fd4a", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-wsdl-validator-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wsdl-validator-plugin@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:9463f5d1-9558-5a37-a67a-c63f44465db6", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-wsdl-validator-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wsdl-validator-plugin@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:cdee0ec8-c47e-5776-98d1-a6100d5f7760", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-wsdl-validator-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wsdl-validator-plugin@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:433ebd16-67bd-50eb-a781-148bd01fa0d7", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-wsdl-validator-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wsdl-validator-plugin@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:6d8df272-8c7e-56ab-b203-91ed0f099036", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-wsdl-validator-plugin 3.5.9-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wsdl-validator-plugin@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:cbb46cb5-5167-53b9-afb3-b1abe2f6b568", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-wsdl-validator-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wsdl-validator-plugin@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ceb2b7e2-1d37-5543-87fe-002d375fe514", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-wsdl-validator-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wsdl-validator-plugin@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f6059850-3d45-5508-a677-338d3a11c9ec", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-wsdl-validator-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wsdl-validator-plugin@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:371bda7f-5983-58fa-b70a-e4b10d256033", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-wsdl-validator-plugin 3.5.9-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wsdl-validator-plugin@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:5042eaf7-b1b0-5720-86a2-8a8529dd297f", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-wsdl-validator-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wsdl-validator-plugin@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c7d2b247-8799-5767-b4a2-07f1cbce5af8", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-wsdl-validator-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wsdl-validator-plugin@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c7dae247-e02e-59ed-b6b0-e868ec1c04c4", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-wsdl-validator-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wsdl-validator-plugin@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a0549bfd-d537-5977-bc1d-c5d3f72d2f8b", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-wsdl-validator-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wsdl-validator-plugin@3.5.9-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-wsdl-validator-plugin@3.5.9-tuxcare.4" } ] }