{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:1908e6e0-b86d-5c57-8e60-6953413a4983", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.7", "type": "library", "group": "org.apache.cxf", "name": "cxf-corbatools-maven-plugin", "version": "3.5.11-tuxcare.7", "purl": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.7" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:68fb9d20-f6a4-5539-951e-def4a7234682", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-corbatools-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:0c758b60-b062-5348-9b7b-d754a2bb4dfe", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-corbatools-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:56e671c1-b887-5b3f-9173-3f24d04cf93a", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-corbatools-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:0fa989f2-81bf-5605-91e0-59f26f1ee0a4", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-corbatools-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:f11fff73-4066-53bd-a869-0dd2901cc679", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-corbatools-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:6c6177bf-597c-5c0b-b519-82df1d648b1b", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-corbatools-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:1d1d8972-35bb-5b3f-a821-46120dd73814", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-corbatools-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:0cc194df-d968-5f9e-8b3f-3cd9aae8ea6a", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-corbatools-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:017457dd-2c74-542b-b1fc-0f7d5df6802d", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-corbatools-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:8ae537e6-a424-5f4b-8c39-513b4bc4c0d1", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-corbatools-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:a253a403-fa57-5eec-b667-e333be237f43", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-corbatools-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:c90bc97c-bc94-5ef9-8272-65ebb2879d6e", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-corbatools-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:fcccc29e-9b2a-59d6-a2b7-30437fce654a", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-corbatools-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:b8b0a7cc-d6de-53d6-9626-d244a8c97ccd", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-corbatools-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:4761dbff-5238-5928-a8cd-856740892aca", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-corbatools-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:4edaafeb-8085-569a-9d12-159e67ce4192", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-corbatools-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:e41ff01a-5ac8-55cc-9956-824fd84c7765", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-corbatools-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:b53e9d94-5dc3-57eb-9daa-f368db8901ab", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-corbatools-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:8819a239-a0a9-5520-8896-333463b17fd9", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-corbatools-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:233823fc-1203-5652-97ff-6a56ffccd102", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-corbatools-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:8e8ce1bb-3470-548b-897b-c73ce17ba581", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-corbatools-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:dc7146a6-92e2-5d66-9a52-277818163040", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-corbatools-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:d253cf9f-0cd8-5edb-ba37-8340b0c439ab", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-corbatools-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:2d022569-2318-5e5b-8a10-4b15a3b5cac8", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-corbatools-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:f67a993a-c53f-53de-82f1-7df6da6d401e", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-corbatools-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:18c863ac-b9c3-5cc9-ba19-fd8607411efe", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-corbatools-maven-plugin 3.5.11-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:9ade212b-f677-5987-b7a4-17131ca59fa1", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-corbatools-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:7048c355-ae77-591d-b415-f2487d3c2453", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-corbatools-maven-plugin 3.5.11-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:001ddb04-86c6-55b7-9aa0-41de6be14b3c", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-corbatools-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:546b98d7-1157-5015-88b4-60f14660b420", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-corbatools-maven-plugin 3.5.11-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:cf904015-5635-53ce-93c9-6137befbfd5d", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-corbatools-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:1a205b68-7ca1-5181-bc5b-4e4e557abf1d", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-corbatools-maven-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.7" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-corbatools-maven-plugin@3.5.11-tuxcare.7" } ] }