{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:760eb2df-4515-56e2-907c-236ab0d5ff19", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.7", "type": "library", "group": "org.apache.cxf.systests", "name": "cxf-systests-tracing", "version": "3.5.11-tuxcare.7", "purl": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.7" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:d445a163-4a8d-5c1b-91af-391395ee174a", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:35068ab9-2891-5d58-9cfb-d9131a6fc3b9", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:673c5c9b-da14-52e0-8a79-d7af02923b50", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:2467b15a-6e0c-5855-a1ab-941a43955099", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:e0939bf4-0cfa-5663-9532-7c28fb2c2ab5", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:f61da848-29a6-5c62-bcea-1e638d285051", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:749d4b75-282d-56c9-9409-7e22c7b0ca88", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:6844804c-b127-5aa7-93d3-6737d70b6901", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:4a9ead7a-540c-54d0-ac29-e6a4c1ee2287", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:181e701e-a6fe-5bfe-94d2-72858d8bf58e", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:89ac16fe-60d2-53b4-84b5-e57f0f82e5c4", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:b2773541-1f67-54ad-9d23-aa0bd66373ac", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:087df12b-9bc9-5d28-a0e5-05a68a9b429f", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:d4f0d0f6-6f07-53d6-b8a6-4bcebe26f461", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:163f7825-3f44-5a67-a5c8-b68eaf8a42e1", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:bce9f317-010a-53e6-8a47-52fc32f06bce", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:e51151ce-63ff-59ad-b22a-03ba71ee7a5f", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:ae4f19b0-d2fc-54f4-98dc-bf8422d6bc82", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:7a2d4b4a-eff9-506b-ac6a-ff73a74e8b6a", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:cb74316f-68ef-570d-a8cc-8d7bb10f691a", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:26c2ab5c-975e-5e67-ae82-9aa927713efc", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:20c2f374-5929-57c5-af11-b0c3f430fc5e", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:a96cd347-8194-52a5-88ad-3765558854fb", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:f43e70fe-5345-57d8-a47b-15547cc643d3", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:3780c57d-df55-5b25-b020-5e40bec92637", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:c0cdd893-66df-552e-8e20-063b2bb581de", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.systests:cxf-systests-tracing 3.5.11-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:4f238e1a-2396-5275-b6b5-13fcf7d37732", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:04f8ce45-b62c-5616-8ca8-a3f2cba23584", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.systests:cxf-systests-tracing 3.5.11-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:92b2140a-9477-58dd-951b-a3c489aad091", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:93ee8807-0ed5-507c-b86e-4f16667cdd9e", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.systests:cxf-systests-tracing 3.5.11-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:4dccdd5c-a584-5d55-a587-ef81360058a9", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:02cce4c9-ee8a-5646-9b51-77ed4d3bf443", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.7 of org.apache.cxf.systests:cxf-systests-tracing." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.7" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.systests/cxf-systests-tracing@3.5.11-tuxcare.7" } ] }