{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:d9629031-0de1-5438-9e1a-e7f97bea1195", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.7", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-databinding", "version": "3.5.11-tuxcare.7", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.7" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:9656891d-b5ed-52f0-9c67-baf9ddb7fe6d", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:696ed2a7-d09f-5103-b6fc-17825bcf18a1", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:0cbefc26-c7f7-5aa5-9234-ae2651879cb2", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:aa3d15f1-7fd9-5077-821b-b889f8131517", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:8a3dbc35-4fa7-5c19-971f-121020666c51", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:012cd159-9942-5dd8-ac32-b8f30303dfac", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:f191f7c2-87fc-518d-8742-9f9d90f8a37b", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:2ef36df9-ad7f-52da-a895-57df9360301c", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:0a1094cf-90ce-57c2-b2a2-5b94f10d0306", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:6094b9d0-9b0a-52e1-aec4-65007195cc53", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:5ce84885-7ea8-5665-9994-f0eb1d024b08", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:a16b21ac-70bc-5f85-ac12-e84a2e7871fc", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:931d6840-6b68-51de-bcd0-67b48757064e", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:2d71fba4-47f8-52db-a260-3721a79ad523", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:aa0af500-dc61-54b2-a3b1-32826b583f34", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:d05cafe0-f7c0-5c7d-aece-7ec0e0b8cad7", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:4d79bdb7-8b76-5e2f-8918-86ed83c918af", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:0cdf7a60-7555-5441-bcd0-f2e0dd78c34a", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:19945f24-3129-53cf-aa9a-4b553cbef169", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:adb52b9f-b230-5300-b7ef-b4aac9221e8c", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:f3ff3897-6a2b-58fd-af27-6d6fb66d143e", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:002bcdce-f312-53c9-bd9f-fbcf9eb69b46", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:86702950-4ed7-5685-9465-e76335c1f93a", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:56be7156-991a-5898-84e6-be8e2bcc6dd8", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:faedcfdc-4ea5-5e8e-8c1d-0e3022aa4594", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:98df2750-a7fd-551d-a4ec-1c6118eb983b", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-databinding 3.5.11-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:d13864e7-64ad-52b9-97c6-90c2b0df2a91", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:79697137-baaa-5f3b-bcc0-679654497529", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.systests:cxf-systests-databinding 3.5.11-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:dba6ee7f-51ea-5846-857b-b668f4249479", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:b4fc2fd5-a286-5843-a6f5-0d2db3772dd1", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-databinding 3.5.11-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:a8ef74d7-ca33-57cc-aa3d-b4245f90094a", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:641453ed-af73-5c12-8e32-1369f81e7816", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.7" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.11-tuxcare.7" } ] }