{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:4d01b86a-46ee-5de7-9d6e-7f1b0a2f95f3", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9-tuxcare.5", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-rs-security", "version": "3.5.9-tuxcare.5", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9-tuxcare.5" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:24ece90d-1ff0-57de-b126-30b86b4a95a3", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:ed32e545-12d3-5550-99b7-5808b56de4b7", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:f64ce40c-a4ca-5d10-86b0-f1e10af1a2d6", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:3237ebc1-10b3-5ea3-993f-2477a72c0a67", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:2fac6ae9-3585-54f1-afaf-5181e6cd3117", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:2c27c48f-12ca-5c60-875e-6d2a91d3b055", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:1dc4dc5f-a32b-5bd4-a7e7-0df97461f8e0", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:39e15410-2f4b-5f62-9fa9-1d1617da3b27", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:7f488a4d-0324-5c23-989d-c5516fa50f52", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:c7d291b0-c8cd-5d58-bdac-e3d547b6bf56", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:a3e88307-d79b-5e3d-a2e7-d71fec9c8680", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:4d40c289-b57d-54cb-8b32-ad31092c2dea", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:d5fac12b-6c22-51ae-a7e6-f9e2d01b3c31", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:c317a831-78d0-581a-8c82-ba900dd1b6c8", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:f9e9823c-bdad-5b03-a1c6-933e319b037d", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:da82e2f6-4698-5704-8b42-efc30fbbe65e", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:e7cee364-d363-5271-86c1-79ed86f478b1", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf.systests:cxf-systests-rs-security 3.5.9-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:b2ac290d-b553-5076-9c18-609541c3335e", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:3d834147-15e8-5346-851f-80368be81be2", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:dfa32224-9fe3-5a84-ba8f-6e09091f0b93", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:d9a2c256-6dc6-5628-8dea-35ae1d919db1", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:3e1d8ef4-9e17-5623-ac94-6314df491634", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:ecf74e8c-bfda-5fc8-9390-28ae68ca65b7", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:3e3c1985-4415-531f-8b61-25d4092373b1", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:cad146ea-7a1e-5a78-9da7-5617b9495558", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:f4f8d03f-78d6-5e09-8ffc-83f280a49a55", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-rs-security 3.5.9-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:b0859f8c-1ead-56ab-b514-fa65d1e74b28", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:bdf1756e-7788-5089-b43a-50221a31875a", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:6704ba7a-63bb-5b79-bfcf-3f78978c1ee4", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:1e2d65ec-1442-593f-968d-63cd794ea4a5", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-rs-security 3.5.9-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:ac9b74b1-444e-5863-acd1-1f3be99bf798", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:fb80a8a8-6707-5208-870b-6da6b8138799", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:f310ad88-6c1a-5d3d-a057-635f5d997d55", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:58c91459-deaf-5228-a99e-9ae3a1f915b4", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-security." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9-tuxcare.5" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-security@3.5.9-tuxcare.5" } ] }