{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:75175397-7046-57eb-830a-5f3bd2ad411f", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.7", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-cdi", "version": "3.5.11-tuxcare.7", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.7" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:ef6cdbf8-ff13-58eb-930a-569aff240e59", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:bee38b21-03f0-5bb2-90f0-a914f9276486", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:9a2e17fb-7723-51e7-bc83-757f10553b0a", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:2a36c23f-f843-5ee7-bb01-ad738408fde3", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:c562350e-bd1d-5d15-a844-d3a1afa025ed", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:1527956e-603f-5e62-85ca-1d6484320596", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:92c7dc9e-f05e-55ae-b620-3802834b45da", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:5d30d794-9478-5599-820f-c0f01441649d", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:6fe8207d-7a19-572c-a084-2a954a9c499c", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:7666e6f3-e554-565d-a361-7667b7b64df5", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:caae2f8f-8fc3-52f4-8258-558c6a954315", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:ecf151c5-1902-5681-ac32-3f7b81857e84", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:f1897d2d-647c-56af-b95c-132ab17f3865", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:d85cd740-acd4-5f89-8cb7-273255a774d8", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:af68b487-092c-5bc2-b2fb-fb73ddbbd267", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:f9902ef9-2098-5a93-b234-9614fd88b9e7", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:f18b07ed-c641-5ace-b9a7-bb25d02aafd6", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:7dd17ba5-c124-5af0-8ebd-3b40bd941d8c", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:f457aeaf-0ef3-5e38-9fe0-c9af8dbb2d2a", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:8231462e-f281-54bb-9aca-708affc93e8f", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:78c428b1-dc98-5bce-9db2-e23adc7851ce", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:86269d3b-16a1-55b5-aeca-402585aa0be9", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:0a3e16fe-a9ce-5649-8a11-0cfd22a8bb9a", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:0c140315-936c-5602-8d3c-d947b5cdd710", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:7d0c19b1-79f8-5874-9998-0367cbc0b6d2", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:1fd7ca3a-ea63-5196-b550-05d69a6b5989", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-cdi 3.5.11-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:ac92c063-0cb3-5978-90c7-3fd389376250", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:0da81281-03f7-5ba2-afcc-3daf8fd69917", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.systests:cxf-systests-cdi 3.5.11-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:6bd672df-33b1-54d9-9a22-e341da6da8bb", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:722014d1-5309-5e54-a82d-345eae8c0cba", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-cdi 3.5.11-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:a70609c3-7b2a-5f12-a6f4-a30426bbcbd5", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:9673a87a-48c2-54c4-882e-fb1378132adc", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-cdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.7" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-cdi@3.5.11-tuxcare.7" } ] }