{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:b3594502-140b-58d7-b862-7f2b8f07a24c", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.11-tuxcare.7", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-rs-security", "version": "3.5.11-tuxcare.7", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.11-tuxcare.7" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:8f7d9518-a09c-5b93-add6-dd6d20a94fe6", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:9686e14e-ff51-5eef-b01f-2a7d265f370e", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:08d5da11-5e60-5fd2-9d17-1d63cc1c9ebe", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:6ea8c4f6-bf44-514b-84a2-f4948f1cce93", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:efa6502c-3192-580c-98ea-c06a03df3d8c", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:600e0d3b-0d4b-5ae3-82a4-b09e14a9bc72", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:aeed9311-89d7-545e-9529-4c194a065128", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:987750ae-b78a-51de-8038-79b47c34e819", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:e5dd3f6e-93e7-5062-84f8-5dccae3500bf", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:1fac7f56-5c59-557d-bfe0-f8f82c652716", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:66168019-c766-578e-a120-bd4eae7d5340", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:8d25bce1-fd10-52fb-9788-2c2d1ff65df4", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:08727c68-eba0-538f-b76a-6850fd2998a2", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:e4dea29e-b0eb-56c8-9568-8b3d96151173", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:26464b69-fc4c-53e3-a66d-849457825b4a", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:c4a5b2b4-595d-54be-9f77-b56cb6e448d8", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:95f1a7d9-4a7b-5107-ac8c-c7bf94a3f7a5", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:aad13361-ed8f-5f14-bd95-8223c93206ef", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:d62b16dd-6557-5750-bc1d-cd716aba2b5d", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:215b59de-b4b5-541d-aa7f-6ec6674c21b2", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:2eaf88da-c822-5ec1-afb6-d44c70ad87e5", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:a8cc7d80-c493-52d7-904d-1358c5095656", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:fba0a60b-9fd5-5a5f-8ea4-a00c5ee1d19f", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:7f1c2197-ac92-5542-a6e6-59789724611b", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:941757b8-a6d7-5332-88c8-8ae50ced22c9", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:a425f6f4-874d-5cd6-9cf2-dc7f006d0c46", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-rs-security 3.5.11-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:11b30f59-41d3-5d71-91b5-f47a03c82d17", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:f36b836b-cef3-5700-a33f-3b035137c9f6", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.systests:cxf-systests-rs-security 3.5.11-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:b7f74f99-a3e3-5cb9-9b1b-2248723afd74", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:dd663f12-6a64-595f-8dd5-660689edb6cd", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-rs-security 3.5.11-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:227a9eff-27dc-542b-896d-180f5647a198", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:cf96412e-539b-5bd7-83a0-76dc2b9f0a9a", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.11-tuxcare.7" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.11-tuxcare.7" } ] }