{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:98ba3870-7dbf-54e0-bbe7-c38d9b436994", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.7", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-rs-extension-providers", "version": "3.5.11-tuxcare.7", "purl": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.7" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:50db63dd-b6bc-5d74-a21c-809e1da2c9d6", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:5bc0ff72-63fa-5044-899c-2236d75d004a", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:5d987d26-528f-5773-9109-956ceec1e52f", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:82fae0b8-793c-5cbe-bdcb-8acb3782f979", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:1d89a87b-3f18-54ee-a5a2-f235f1547816", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:c8fe9660-0e00-5c5c-8170-88272ab32c93", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:65b4dd4f-e71e-5ea2-9580-59696909908b", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:b7cbae85-e91f-588b-bf5a-f45dfbe4b033", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:90de1e4f-1f67-5569-b328-3a29dd7a65a0", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:07ab99ca-76d8-5d2c-ab35-7ea661a92080", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:5d1ca38a-f1fa-5131-b343-17f5e0ecaaa4", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:e69e4d7d-ef74-511b-a69c-ffd2ebfc3df4", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:222970f8-3e54-5170-822c-9b70ab67f2e0", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:53f6d87d-749c-521d-8f94-736bd8d3d233", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:4a56a8e9-c388-572a-995f-7559386d5706", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:98f463ac-5227-5a0b-b887-b076d00bef9b", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:fe29bd31-9885-5150-8af4-0219904ba682", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:296c2e70-128f-56b5-87d9-aae1370a0d4c", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:5ca9646e-aa3a-5270-b2fa-88f7823ae1ce", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:4136d3fb-64ef-551b-bc5f-cebfbc8d2e78", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:1a0bb5d2-5576-5621-bb07-f220ec09b8f2", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:65527952-ff57-51ae-bd68-0aa0aaf700ab", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:e9c57fcb-1555-5436-b9ec-696541a59a22", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:6f6e916f-d8c4-55f5-9be3-3dc06dcf1d28", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:2926f39d-f63b-54fe-a7a7-0b6bce0a11fc", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:5ab73b41-c7e4-525f-8def-f622341e3917", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-rs-extension-providers 3.5.11-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:521da79b-7ac2-5ae7-b581-d9e745732929", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:8e8fb0ec-589b-5f9d-8f7d-3b356e36577e", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-rt-rs-extension-providers 3.5.11-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:46c02328-924e-5351-8650-bf7795391977", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:2eb745ba-557e-546b-bc01-f6c466247528", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-rs-extension-providers 3.5.11-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:12dcfce2-508b-54c0-b33e-6053d9ec23c6", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:a5842eac-95b7-51df-b47a-2a4266111772", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.7" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.11-tuxcare.7" } ] }