{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:6e93361b-a9ca-5011-8483-bc8740ff6659", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.7", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-cdi-weld-producers", "version": "3.5.11-tuxcare.7", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.7" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:eea01cc5-476b-557e-9d62-16d640600c65", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:7f9b1dbe-b7db-583b-ab91-69e50760bae8", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:723f61a6-74f6-5771-87f3-e4b7ca9fc681", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:0f573089-e275-507a-8b7e-cf5a6e4c8130", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:3b48a7d9-e798-554e-8c01-4718e5dc4eae", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:2be2f852-985a-5663-95ef-5cdcae7c9f2e", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:db8b7888-6c87-56e3-91ed-5c8f39e5c3c7", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:389e78aa-c25b-5c83-9911-a422cc58a9de", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:22fb677a-91b7-5864-80ef-bb22fd1e7103", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:2964b129-1858-55e7-80e7-7c1a9d852cf6", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:803cd32a-eab9-5f8f-81b4-cb8e368960e5", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:11af4888-19c6-5539-a026-eed5f5a528ab", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:21e4e762-f1b5-5444-9420-5fde050e15cc", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:eeea1913-8137-55a3-9fb2-656bb061740e", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:608825e3-3989-5f55-bc76-168e4e1ffa78", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:003c4296-7a6f-5e5c-999d-ac03c318a1c5", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:83d443a0-5f46-5dfb-8a42-8e0979cb4549", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:aeb5afc5-1e74-5131-ab2c-f842b72e9cd3", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:8ff7ebff-4e3c-5356-bda4-ba6eacf54026", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:53c0b545-e052-58ef-ad43-2bb59247bf08", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:8a3bf1ae-cf79-5812-bd00-3dec2cc75331", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:84972982-903f-5eb1-9fc1-c62c58804315", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:e99c38d6-b499-5899-942f-58ae3afd7bc6", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:94a13c0f-4bf1-5fb4-8981-30f07dab07ac", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:a9835765-4c31-5210-9a12-1d9fb1ba484c", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:e09a4ab1-c98f-50ee-bbab-e71f1d31c0a2", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-weld-producers 3.5.11-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:cb1d39eb-1d73-598e-89be-c7f9f145ec11", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:09532b63-5c13-5c6c-ac47-ff0b56a57e1e", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-weld-producers 3.5.11-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:acbfca61-5a2a-5090-837d-84fc9d69a8c8", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:77f9b7a3-405e-5c38-b9e1-21ac3c799c97", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-weld-producers 3.5.11-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:bc585159-e15f-5bc1-a56f-ac963cad0656", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:533f41de-9c4e-5ac1-9f06-cd070d9c85f9", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.7" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.11-tuxcare.7" } ] }