{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:b1b61687-149c-5752-bc9c-9b96fdc29e6a", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.5", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-rs-extension-providers", "version": "3.5.9-tuxcare.5", "purl": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.5" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:eb5efdb2-dab1-5f46-b886-d8c27073663e", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:bbd517d8-4334-5d89-aee3-58a84935217d", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:4767c9b2-8c55-50b0-91c8-ff503c0f3432", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:c89c71e5-e67b-530b-8ab7-f3edb3ced31e", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:44eeecc7-683b-547f-b519-20eb0b62474e", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:8e374188-3375-52de-96df-37292df54426", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:10842afc-fa8b-5bec-a280-cc00c0d8bf98", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:1f47b468-4535-572a-b126-bc40009ffa42", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:cfb2c14d-2ef3-52cc-b822-e6cfae603826", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:6914d1e9-feb0-51f8-b32b-c9354b69c634", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:a565d42f-d7e7-50cf-9c46-21c3cc0a235d", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:9f953928-9b5e-5574-a63f-de94324a9997", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:7f9ae76e-9252-55bf-9957-0a5017bab6a4", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:f4c7558b-7825-54ab-a712-6be137971317", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:16606441-b838-52ad-a030-757dfca47b7c", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:b2c29137-dbf0-5643-8aa4-3ddd2ed922f0", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:441bc694-def2-53c1-a85c-42dfd8f6c239", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf:cxf-rt-rs-extension-providers 3.5.9-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:a2bc6148-76e2-5ac4-93e0-367e16da1a1f", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:c760eb8f-4cd4-52a5-8e49-9e18d2d498dc", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:d8b19a56-fdc7-54fc-8864-19477ba77acf", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:78e59885-cce8-5795-acf2-9547ea9f06a7", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:66c1a855-9998-5c30-a133-da9e4bfad3b9", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:f3eb60fa-1d09-5b42-88d9-562a3b993e69", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:119f294d-c4a8-5d44-abe9-c5ea44df090e", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:0c348ace-6fdc-599b-9f32-7d34f493d3b7", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:ca49f675-d7e4-5c49-8cbf-be8a4bfb9279", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-rs-extension-providers 3.5.9-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:fd7e0ec7-244e-5a85-8c1a-05c330f8fb18", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:9c8be45e-3a1a-5ee8-a41e-a667f3925d7b", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:970781a7-0077-5023-b183-a1e19368c3fe", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:68efc5af-fb36-5698-a1bb-e9dbe51f531b", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-rs-extension-providers 3.5.9-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:d6ae30e7-d25b-55d1-8ca1-e9cec085c88b", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:04a375e9-92aa-5f6d-9804-ba34ff5a8367", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:856c8298-d498-59da-a808-981549ea5703", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:2129bcf3-af4c-5cbf-a478-e140add60aa2", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.5" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.5" } ] }