{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:bbe20982-54d1-58d7-9cc0-a2af04374387", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.9-tuxcare.5", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-cdi-base", "version": "3.5.9-tuxcare.5", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.9-tuxcare.5" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:ad1c18e4-62c0-576f-8eb1-91a44a00f9b1", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:1e55f07c-e122-5b05-bcaa-382e0d1e604d", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:1c01801d-5b16-53ad-b2ce-8d29f592d0be", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:eaa3a127-bcaf-5309-8c47-6da1982e923f", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:9c1bfd57-8162-5730-b24a-1f2014c404a7", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:5be21220-9b5f-503c-8651-4115224fe62d", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:0ad3a14e-4876-5c59-aa92-f45f434423e2", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:7e833602-6b1c-5240-9616-3662258d9b9f", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:deb9f54b-f0f8-549a-8d77-15c7a493bec7", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:9f8fdf1c-90bf-5249-8155-265d7388c96b", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:1101a734-f1b5-58e9-928a-7a669a0c636e", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:691fa9a1-674a-5b80-be45-56383aeb9c5e", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:ead6b4f8-8d54-5440-bc44-7bd47b478e1d", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:256e5b2a-6e41-51f2-afc9-d96649ef5466", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:1ddcdab0-32cd-57e9-8bd2-2ded7009e7e8", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:4080a1d3-7cf6-56dc-a8a3-fe38dc3de459", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:f7b69a5b-9557-5267-a907-ee7abd8839a0", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-base 3.5.9-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:1938d960-3855-52f1-8ee2-59435bd5df7a", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:a3e8a20c-e83b-54dd-a510-dd4123471189", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:59e16322-7f1f-56e7-9667-a5ef71a540dd", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:87514d04-3db9-5277-818f-39dbfe5e776b", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:322a0fe9-742b-51fc-93f4-e75f7f3307f1", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:ce47ba1b-9994-568c-8f81-9ade32eddbb1", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:c2a4dfd4-4260-512b-849a-c280dcefb7f5", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:f39c8ca6-61a9-5de8-a836-62769838e95e", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:18b3d89a-a47f-5044-b655-646aa41bda84", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-base 3.5.9-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:c9f750db-da34-5902-8adc-6c204d404479", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:cca18484-c207-5d89-8bf0-e5fdaf639da9", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:69fefc99-18b1-55aa-a885-f488cf40eed0", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:cc02c952-39f9-5c9c-86aa-eb742571b956", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-base 3.5.9-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:e0888d2e-26ad-59f5-8a55-f34948db40b7", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:27f23e32-813a-5f8f-8f8f-9272d2a8a6d8", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:e3619bb7-0d8c-5d24-9852-b082d7f6de41", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:372b369e-63ef-558f-936a-f99b4a0e3a49", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-base." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.9-tuxcare.5" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-base@3.5.9-tuxcare.5" } ] }