{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:281e8b66-2458-5c5e-933c-1867dd8092a3", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.9-tuxcare.5", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-microprofile-nocdi", "version": "3.5.9-tuxcare.5", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.9-tuxcare.5" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:3b92436a-9402-50ea-a145-72b748541b16", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:0e747d7c-0d21-5ae9-beef-64df35ac0396", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:32744ef0-9169-52c6-85f5-b981abfc9570", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:d40076b0-11fe-5890-9473-1b868191b793", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:1d2de40b-89c1-51f9-8e58-9f1708b385cd", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:c2300bc1-4f2d-5efc-8de0-c7e2ddf750b2", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:62642398-12c7-5795-af38-8a95656c46a2", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:77fc3777-f4cd-50ab-938d-243471c1b8e6", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:182f4f2b-f377-5307-a687-55bfa8bc8f73", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:9506cba2-75f8-5ee9-bfb8-5eaf48597169", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:c6678361-af49-5c2b-ac82-4c6eb0c19eda", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:69b61d6b-68b0-56ef-9f64-389ace8db857", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:069ac938-a361-544f-8edf-4e3f9e15c769", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:a203a895-490b-5ea1-a611-c9a161401d21", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:24bd7384-b643-5774-aabd-48fd20c41dd8", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:3a4c585c-356e-5019-a784-b4c7483a0f12", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:291bf188-8d5c-5a40-864f-c77ab760f2a9", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf.systests:cxf-systests-microprofile-nocdi 3.5.9-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:ba0cce6d-a874-5ed4-957d-aabb4bbdf871", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:e59566da-d7ea-5e33-98bf-7231f4baf9c2", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:9b52e6ae-b0aa-5ddf-92ea-8a7cc81bd383", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:4a1b264e-2f00-5665-9a8d-625ed177cd82", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:6d313b14-b4bf-5bb8-b469-b5d64ccee836", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:cf2045d2-6c16-53a0-979c-05f43e6de121", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:e9ac2c60-4e94-5615-ae2e-8234d7c992c7", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:1efa6ccf-fabe-5043-b025-1af8cf83eb67", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:de91ce6d-eab9-59d2-870d-f1710a0668a6", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-microprofile-nocdi 3.5.9-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:c9660ca7-111c-5774-9285-8fc6da5ff09b", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:5c37f612-8871-5ce0-866f-401a5f1b42f8", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:0cee8d63-6310-5dba-a6b5-0f8f761ecbbb", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:395ad40e-5cc1-5ccb-80f6-03703aaaf5af", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-microprofile-nocdi 3.5.9-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:2e1dd57e-b4d5-59d4-9941-ed172f07fe9c", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:c4a4a588-5b5d-534f-bdfb-d1591795b95c", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:1c9178e0-6909-5ffa-8205-5d0a9191da34", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:67869e6f-b972-519b-840b-678ebe8d765b", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-microprofile-nocdi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.9-tuxcare.5" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-microprofile-nocdi@3.5.9-tuxcare.5" } ] }