{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:d5b95a6b-7a3f-543f-a0f7-479cdcc39601", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-jaxrs@3.5.11-tuxcare.7", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-microprofile-jaxrs", "version": "3.5.11-tuxcare.7", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-jaxrs@3.5.11-tuxcare.7" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:85c4f395-6c71-5881-a67b-71cb298feded", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-microprofile-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-jaxrs@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:7849a612-e6f9-560d-92e4-f920abe6deba", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-microprofile-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-jaxrs@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:2d6e9949-62f5-5097-a2e0-f5a212aef83e", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-microprofile-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-jaxrs@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:29fbf202-49f7-555b-9011-c85fbd03ddea", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-microprofile-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-jaxrs@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:67c6b144-c646-5887-b96b-7abb12b9f3cb", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-microprofile-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-jaxrs@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:894e832b-823e-501f-8c46-63294f32d22d", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-microprofile-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-jaxrs@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:e348f734-89dc-5e4a-b23e-8928557fbf2f", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-microprofile-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-jaxrs@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:d09f0494-c755-59a1-a6d9-6ace30d013fa", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-microprofile-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-jaxrs@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:8598167c-080e-5708-b184-511ad5ce2239", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-microprofile-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-jaxrs@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:b062eaf2-5a9b-59c5-8498-b4c12c01b38b", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-microprofile-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-jaxrs@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:ac7abe19-aca1-568c-8156-9e44a0f7ed85", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-microprofile-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-jaxrs@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:99f23118-259b-5dc4-ac94-58cdca83067d", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-microprofile-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-jaxrs@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:8ed501bf-39fa-559c-a46c-43c7ccf4a51c", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-microprofile-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-jaxrs@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:fce36821-4ace-546c-8a75-66df969d27e2", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-microprofile-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-jaxrs@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:7a8521a8-9b35-521c-8c89-b85286826310", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-microprofile-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-jaxrs@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:5bd79fe6-0395-5421-b249-6ba1c172bee1", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-microprofile-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-jaxrs@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:ffc90912-d070-545d-86ce-8d765f9b8276", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-microprofile-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-jaxrs@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:9b76e703-ed76-5961-a23b-245731906114", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-microprofile-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-jaxrs@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:fa02f048-b25e-5efb-88e5-7f871828b35b", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-microprofile-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-jaxrs@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:6c877ef1-9b2f-5e33-8855-176aa8b2a0aa", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-microprofile-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-jaxrs@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:756d621f-2b79-5c9c-8b3f-812ea4f123d9", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-microprofile-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-jaxrs@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:89ee9b94-d5e7-55df-bae7-31403c049870", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-microprofile-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-jaxrs@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:6be8d87f-5ea3-594d-8e34-669ea3728f87", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-microprofile-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-jaxrs@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:09ec71de-3163-56ec-b28d-391fbbc2bafd", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-microprofile-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-jaxrs@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:3edf449b-ad50-5ef5-b192-b46a9c81e64f", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-microprofile-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-jaxrs@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:71ccb012-2152-5cdd-8d44-ecdd62f8c1bf", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-microprofile-jaxrs 3.5.11-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-jaxrs@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:910168db-3800-50ce-bdc4-8c1224803f90", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-microprofile-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-jaxrs@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:e28c3923-d16f-54b6-9b87-5a164618a554", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.systests:cxf-systests-microprofile-jaxrs 3.5.11-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-jaxrs@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:acd39d15-d8a8-5081-8620-d95ca840b547", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-microprofile-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-jaxrs@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:ef2803db-9217-5f28-8475-d144dfaff1ad", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-microprofile-jaxrs 3.5.11-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-jaxrs@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:417cd64c-c461-544f-b4ef-20a3df45e517", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-microprofile-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-jaxrs@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:24aa53d1-b2e6-5068-9355-e1d9d25789fb", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-microprofile-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-jaxrs@3.5.11-tuxcare.7" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-jaxrs@3.5.11-tuxcare.7" } ] }