{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:5fbbd2f4-757a-57ae-b595-4be219a5b7fd", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.9-tuxcare.5", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-rs-sse-jetty", "version": "3.5.9-tuxcare.5", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.9-tuxcare.5" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:8c4e0deb-385d-5545-a832-6bc0471e2e20", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-sse-jetty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:d61a455c-a883-56f6-b9de-6e9c98019886", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-sse-jetty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:eef2e353-e2f2-56b1-bd74-067b35e2f470", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-sse-jetty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:67cfc2c8-4a03-523b-8a06-f61dce1796ee", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-sse-jetty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:3dc64b6f-56c6-5412-9528-e96a30c1d853", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-sse-jetty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:1dcb0d82-fb78-503a-8a7b-9f448a345d77", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-sse-jetty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:e5b9c4dd-1ca4-5750-969c-5c60549517ed", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-sse-jetty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:8febe9a9-7b6f-5e6d-bc40-b8a3aa29212c", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-sse-jetty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:203a2018-cbbc-5015-922b-a0805f451864", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-sse-jetty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:47c0dad6-d873-5b2f-b0d2-7d131cda3283", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-sse-jetty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:9a5565fc-5179-58a1-8925-00d563e9ea0c", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-sse-jetty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:152554a6-1965-54da-8fb9-3bc8cb0459bb", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-sse-jetty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:715e5c76-660a-5b22-892a-a20e8fc8a43b", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-sse-jetty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:0b392dfd-2f51-593b-8e11-f15a65b086ab", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-sse-jetty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:f32160d8-b6cc-58ea-84a1-d279b4aa4a21", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-sse-jetty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:f15308ca-e28e-5d37-8955-f4e2afe4c54a", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-sse-jetty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:3a04d722-4189-5493-a65e-08f6e92bb4d1", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf.systests:cxf-systests-rs-sse-jetty 3.5.9-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:10b42b9d-9b8c-5179-89ca-8905f7bed74d", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-sse-jetty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:22d48764-3d37-5a16-a71f-fc8b7e23e0f5", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-sse-jetty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:0ce1112f-bab6-5698-92de-b057785af873", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-sse-jetty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:b71c145a-d058-5728-9379-980ea26a1b1a", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-sse-jetty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:f0c56b99-a514-579b-a2a6-11d9b750af1d", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-sse-jetty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:1eec7947-592c-5b18-a2e4-023340f1ccfb", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-sse-jetty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:22d208f9-d4c5-59a5-9a32-b19f317b81f1", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-sse-jetty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:eb89a76d-6e8a-5ae8-905b-237a5227b5ae", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-sse-jetty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:b2452dcf-47cc-5a8c-ad03-216bd462ed09", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-rs-sse-jetty 3.5.9-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:06e25458-3f39-5c59-bb91-7ad69b97c73b", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-sse-jetty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:6f17db68-bfcd-5dc8-b07f-227a502aedbb", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-sse-jetty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:b73e21c0-d6b1-56e1-a3db-09ac1b6fd2c4", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-sse-jetty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:34d545bb-4817-5ed2-8cd0-c8fb9a3d7dee", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-rs-sse-jetty 3.5.9-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:b081bbf2-de9a-5da7-a64d-4c516080c3f2", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-sse-jetty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:3ce69aa6-476e-5720-8335-5a552a571a38", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-sse-jetty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:1b71ceb3-0080-561e-9e67-9e4cfe7ddd83", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-sse-jetty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:139d0b59-7259-55b8-a3bf-f727548a3a42", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.5 of org.apache.cxf.systests:cxf-systests-rs-sse-jetty." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.9-tuxcare.5" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-rs-sse-jetty@3.5.9-tuxcare.5" } ] }