{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:e64eea70-ba3b-55ee-bc97-fc38ebfdbbd2", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.9-tuxcare.5", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-databinding", "version": "3.5.9-tuxcare.5", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.9-tuxcare.5" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:b62cb1d3-11f6-59d2-842c-6ef99657e6ee", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:3fabc9c1-e3c7-52e1-9748-d6ec0157acd2", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:abd3edd3-16ca-58ee-b680-465c6d89898a", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:0717d4b3-7a1e-5392-a2bc-21abccc45e03", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:35bc1560-96df-5a89-acea-932b035acc92", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:2798b889-143f-53f9-8f38-b635b78980e1", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:207e2d1d-49f6-5939-9d72-5a95e3ac247a", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:bc1d4b4e-9e60-57c7-a6f3-9fc48ee30345", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:2d9a9a38-affb-5131-8103-a2a7facfa777", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:eb650bf7-f334-5342-a1bc-4f19f5684087", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:70fdb130-8339-5106-b87a-fd98861309d3", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:2f073b3c-9303-57b9-bf34-c69717afa1d9", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:74fc326b-b10b-5295-b6b6-0fb4120c95e8", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:ad5105e6-1e49-5b08-968d-6e9338fea7ae", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:ed3ad8fc-fd7c-5956-93c5-468422fce3d6", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:73270217-3bf1-56c3-a772-a008b4ba5176", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:2c4ee21f-be17-59c4-8f05-a7b7b9bb6a63", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf.systests:cxf-systests-databinding 3.5.9-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:d907cf1f-15d2-55b6-8299-1477bc98e6ec", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:7efba37e-7185-572b-8c1d-1f1a60aa2a78", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:39bf0216-40c1-537c-8707-e5fb29b120f7", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:06e551e6-da9d-532e-9a04-39e3d1e1b7c1", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:0a177522-0b80-5dbb-bde8-d8828f541f2a", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:7698b88c-59f5-5424-9499-c701b70429ea", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:a1861ae0-e5f7-5a44-8125-104dd0e2a6e3", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:06ff7f4a-518e-5a8f-a71b-a017dcec8ae8", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:a9fb0799-8e43-5530-a16c-0a3d106f7241", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-databinding 3.5.9-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:8516aeeb-b7bf-55b6-a538-d8e71360b9f5", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:c82a619d-83e2-570e-a56c-90e1cb76c816", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:a57915aa-c5d1-52c9-a6ed-b57c3eb85787", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:4e0b53e2-bfe6-53d7-910a-fb7f3d8696b8", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-databinding 3.5.9-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:445e6688-c1f6-53bd-8524-757e1062f2e5", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:99ca1ff0-7eb4-5847-bb81-fd2d7ea0820b", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:48762456-33b3-5ed5-a7dc-db9bf470a99c", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:d5897ecc-f880-5013-bd62-c046534d03c2", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-databinding." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.9-tuxcare.5" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-databinding@3.5.9-tuxcare.5" } ] }