{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:1e0f958d-3df3-52dc-93d7-c55411505d2f", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms@3.5.11-tuxcare.7", "type": "library", "group": "org.apache.cxf.services.xkms", "name": "cxf-services-xkms", "version": "3.5.11-tuxcare.7", "purl": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms@3.5.11-tuxcare.7" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:7c8ec8ee-d2f0-548e-af86-64683ceaaad5", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:750bf182-5396-5e01-9e6e-1f94a83050c0", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:a78df305-3c9d-527d-95c5-4bc166185e83", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:a087c609-23b6-58e6-8163-af5a31d0bfa4", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:b011646a-dca9-5235-8ede-4367b8b6026b", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:dee97177-d8a6-5d1b-844d-fc393f0c2329", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:38cfcecb-0b11-594d-998d-cb2af8c69c69", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:3291f183-ade1-5a83-a699-4ce3ae5a6fd5", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:3e89535a-6de5-5198-90dd-862e1e0e4419", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:42a33d20-fa14-5eee-a411-9d253b534fbc", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:9a2adf26-9c5c-5421-acc0-08547fa03139", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:f5851367-1d93-5aa1-8d8c-02f7fc4b7afa", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:29716333-7fff-5ded-9b81-abdc52cc5b3c", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:c6cf8417-38f4-5549-9196-a1fdbfaa0bc7", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:96ba3c9a-54d4-5be1-b7a6-3462d49a3af2", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:862b6713-66e0-5dca-9a83-545bd78199b6", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:f4aead22-9c1d-50d8-86ad-7a0d33814591", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:66c77273-aa2b-556c-ac21-e307e7055a1f", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:b2e84926-8d17-5e87-b9a4-e2e9c10cefe8", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:08cc4be2-c5ec-5682-a7ff-4a98221990a6", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:7834610f-fc65-5f0c-a145-7ee4033cabc4", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:bb5c7558-604b-534b-a470-acfa0639d200", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:598a8bbf-2afb-5905-9c21-1f3aac3bd351", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:3883b248-194c-5d99-9933-4a95f968c845", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:2a967988-b5b4-5cb4-979e-fc09c409913d", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:50e22049-6e31-578d-89af-667ca9ee9e47", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.services.xkms:cxf-services-xkms 3.5.11-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:8c1021c1-fe14-5db6-b68d-f50fecc75bac", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:ee4b0fad-0f39-53bf-b431-f836a033ccf7", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.services.xkms:cxf-services-xkms 3.5.11-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:06067ea4-2f3f-504e-a997-00bda56fee77", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:b37b85a7-88dc-5537-a3ba-700046498ced", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.services.xkms:cxf-services-xkms 3.5.11-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:4d9783ed-6ea3-5b97-9230-1969d4e9fd02", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:1f7faee4-5387-5db4-bacd-88164780fac9", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms@3.5.11-tuxcare.7" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms@3.5.11-tuxcare.7" } ] }