{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:9441bb3f-345b-5651-a31d-92531db0e91b", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.5", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-cdi-weld", "version": "3.5.9-tuxcare.5", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.5" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:29aa145e-8b03-5c1a-8ff8-2b95e2f30e1c", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:b3ec21b1-0292-58a4-9745-ef61711c1f5a", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:674d1b8d-2e03-5918-8aae-e9840a9ce35f", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:6013ea48-ab37-5545-8680-0c04bf7e3e98", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:4f12fe60-ff81-5d7f-9fe3-92da0491c65b", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:c50ea94f-9842-5519-92d9-f037061a540d", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:23cd4fc0-996b-5fec-8aef-94daea9eed36", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:d0b119fc-3108-54eb-820e-58eede688a35", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:3d863b19-a133-5ded-8c45-4782f1febf08", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:a848d831-4938-51b3-9dda-6f7a29303c9e", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:a796834a-ab0f-5bda-8819-706dc4b853be", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:bdc20412-86af-5666-be28-85ac3d476360", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:0d6e3961-c858-5150-b949-14db60796f3a", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:3f1007e1-72b5-5067-ab6d-1dff907cd64b", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:025d2bf1-88db-5707-b70c-80f50ff0fa28", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:2154a086-dd64-5355-8d49-39030f457daf", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:26fd37d1-6ff8-590a-8cc7-9ad301737626", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-weld 3.5.9-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:4614c8bb-9d94-58a2-be93-d49c20a36762", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:fc995369-2fb3-570c-a18d-b2328d20538b", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:9a0f274b-f0ba-5491-80e1-cb61f503936f", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:3086603d-ec17-5d3a-9f3d-550aa2fda119", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:2d919c6c-56c1-581e-a0a1-bb37a26ce84f", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:21a3fbe1-d634-5939-ba84-779bffdb5f3a", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:742d880b-ae70-52c7-8b24-609fe47cc8f3", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:80fa6aea-716f-51e0-b5d7-6e77a45aafdc", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:0f45931a-9057-572b-805c-e8e7b5f58914", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-weld 3.5.9-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:43049247-06b0-56c1-8145-b8a120ff5f30", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:8068758f-5133-5302-bbf8-8982f61a21f0", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:cb589fbd-ec9d-5a36-8720-4d4f45b53068", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:aa8c7762-b570-546d-952c-8e06149b7acb", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-cdi-weld 3.5.9-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:dc5cdb29-161e-59ca-be83-400b23479392", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:b7a0acc0-9b49-5378-a2f3-a4bb6e182766", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:c622ddf0-81af-5f36-8144-a1236a2f9e52", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:46decd8d-7920-5a0e-88ca-b16993358f41", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-cdi-weld." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.5" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi-weld@3.5.9-tuxcare.5" } ] }