{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:51d7eeb9-bce4-530e-8688-ad7150528b69", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.7", "type": "library", "group": "org.apache.cxf", "name": "cxf-integration-jca", "version": "3.5.11-tuxcare.7", "purl": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.7" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:3ce54c7d-1e40-5bfd-a350-4da286bb291a", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-integration-jca." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:b73fb264-b99a-50dc-a72f-551a476c6b99", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-integration-jca." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:e117bfaf-2404-5ab5-803b-1254e71ddb3a", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-integration-jca." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:edf6d1f1-1636-5dba-9b89-501f50b5ac0a", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-integration-jca." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:97609b5d-a95f-5dd0-b12d-aa3502129fab", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-integration-jca." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:a9813e10-b259-58be-9fe0-2d8169c2d925", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-integration-jca." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:ceaee94e-46b0-5c56-abd8-e0349758aef7", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-integration-jca." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:6748357f-8526-5f70-b9d1-cec3c2985fae", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-integration-jca." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:b123afed-31cc-570d-821b-d61156e00193", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-integration-jca." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:400be2f7-22b8-5e2f-9f7d-a78d82945cb0", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-integration-jca." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:75f2e051-4d1f-5dbd-a40e-3d10a7474b1d", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-integration-jca." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:d1ba94f8-0031-5c94-ac9d-1b6c20fab2f2", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-integration-jca." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:a3cb3fb5-98a1-5681-981d-e0446fb39ad0", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-integration-jca." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:9e2b7c03-f94d-5c83-b2b5-554405f7f215", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-integration-jca." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:036b285c-d0a3-56fa-9766-fd4d10ac1a56", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-integration-jca." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:613eb334-5acd-5ee0-89d9-976614a44073", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-integration-jca." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:28701dea-3962-50ab-97fe-8b192427d179", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-integration-jca." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:83a46270-e21d-5e98-96a4-acbc0f48ae53", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-integration-jca." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:785b6bc6-e5b1-5d03-8277-b2adb4994786", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-integration-jca." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:02df2f27-c895-55d7-ba7c-311c4dc7e780", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-integration-jca." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:141907bf-3ad8-5221-8bce-96479e775a92", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-integration-jca." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:3d8fc5c1-b218-58e1-b35e-8d2e76e5cb33", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-integration-jca." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:ea85c24e-47a8-52bc-9460-a8d0216e636e", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-integration-jca." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:aea6e6d4-080e-5f2a-88ea-ffe354fd0d3d", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-integration-jca." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:0f30dc97-4e98-51c6-83f9-ade1459151f0", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-integration-jca." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:36c87072-13e7-54d0-9c6b-b63ac41e7f22", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-integration-jca 3.5.11-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:6aed433d-dc96-573e-9dfc-2f6e22a21417", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-integration-jca." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:967c1861-df69-5405-b9fe-c5f841835d77", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-integration-jca 3.5.11-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:e243537d-975e-510a-9f3f-53b1cb85c7e6", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-integration-jca." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:6aa11d50-0913-530e-a8bd-0d3e5734f56d", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-integration-jca 3.5.11-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:3a214a1b-d592-5d47-af68-0b35b8a87e5d", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-integration-jca." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:11197d29-5924-5036-96be-b485536792a9", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-integration-jca." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.7" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-jca@3.5.11-tuxcare.7" } ] }