{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:490df70e-9379-53c5-bfbd-8ebcf4d79500", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.9-tuxcare.5", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-cdi-weld-producers", "version": "3.5.9-tuxcare.5", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.9-tuxcare.5" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:5830551e-d534-5449-86f0-8233622e29c8", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:f4498649-88aa-583e-84ae-6e32645500f4", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:db9d1d45-e00c-5907-ade5-4d67dd588307", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:8dbfc018-75f6-5187-bba8-41f7819fc746", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:49a29396-ac50-5af7-b5ed-6e98f4a50542", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:0ef707e3-da92-5e2c-824d-05a1fa4a57cd", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:073b80c4-d0da-554f-a5bd-b8f0c30e3621", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:8db874b6-4f7c-57f4-b70b-ed82ada45cf7", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:eb6673e8-0e11-5320-b0f6-8f84b02ea797", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:ac251cb1-4258-5c47-88d2-165485dd3181", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:09fada68-a0e8-561e-9ff7-a5c1241ac16b", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:819e07ff-9f1c-5e1a-a055-cc290e42a295", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:ea1b29c3-51d4-56c2-999d-4190de39455b", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:0636d22a-1955-5026-ac7e-9dcb15332d16", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:7c0f9f6d-477e-530c-b619-a0d1fec9a051", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:2d28f47c-a7d2-5cf7-888f-377cf08f5c33", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:8765da8d-fabe-5e8f-8e97-b5a36a9950ca", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-weld-producers 3.5.9-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:1e34a6eb-4a19-50eb-be58-5736828f188f", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:1ea567d4-bf40-535c-989c-1a15f152dff9", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:4a296699-b9cd-5a79-8e32-a2ea194a8092", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:166f3c79-0936-519e-9944-b6c3b5418485", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:91c61d19-797c-5536-9ef7-c786b9aed96a", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:290ffdd4-d121-5c69-8bea-f5e1c959a13d", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:5910e00d-f3c0-5193-b7d7-889a7587e6db", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:418dd6ce-053b-5976-865b-eca65cc66658", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:380d9ad7-195b-5c66-8cd8-44ba5823b9d9", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-weld-producers 3.5.9-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:08287af4-5300-5096-aa98-4a6ba57ba384", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:a42f24d6-a5e5-57c9-909d-f03bbb86b402", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:e05d6e0e-67bb-55e1-9786-7f8202164de8", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:078d9c68-c99c-559e-8b0d-727ecb1ad984", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-weld-producers 3.5.9-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:be17d14e-9ef3-58d9-9291-a1f3386dccab", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:d89b763c-386b-5e05-8478-278d8a36cc67", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:c65bb5ca-05e2-586d-9624-fc9450934dce", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:b00ed29c-b615-591e-b44a-a62fa4c9d471", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-weld-producers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.9-tuxcare.5" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld-producers@3.5.9-tuxcare.5" } ] }