{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:3a6420f1-2c33-5cf8-8f0b-a1f5f2ebb419", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-transports@3.5.11-tuxcare.7", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-transports", "version": "3.5.11-tuxcare.7", "purl": "pkg:maven/org.apache.cxf/cxf-rt-transports@3.5.11-tuxcare.7" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:8404f586-8eb7-590d-960d-9ff11c05b10c", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-transports." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:038bfc5a-281c-5857-a1e1-928774db9691", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-transports." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:52a49187-18ef-5321-b71c-d118f938f8f3", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-transports." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:6370ee9a-e07c-52c2-87f1-2461f7ff5a47", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-transports." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:de6128ff-0cef-569b-8523-fedef0121c0b", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-transports." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:d7b033c8-e4b6-59ed-8934-a18ac6254643", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-transports." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:463d8b3a-b771-5223-89f6-279afbe553d1", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-transports." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:b75c75c9-791e-5a27-b77d-c435b876acf8", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-transports." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:5d539f67-8f66-5825-b62b-5368a37f0e43", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-transports." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:0f49aa3b-3f24-519a-a0ac-0cb18147d96a", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-transports." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:c48e065b-9bdc-59a8-b794-59c5ff6593b3", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-transports." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:ccc5ad10-cef0-57da-8190-d63a98226d3b", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-transports." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:30708021-95d9-5775-96f8-040ab294ff4e", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-transports." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:591d76ba-304c-5433-ac71-e91ab3cfec39", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-transports." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:afb792c3-a7a6-561c-98d0-b7e6b8a67ff6", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-transports." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:6d44a84f-6bed-554f-aee2-1a0d19eb1c9a", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-transports." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:c11d59ae-7db3-5c21-95d9-331d9df6a223", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-transports." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:c65f342c-ee28-514c-bdd2-313c83b6e7ce", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-transports." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:d3c38c31-3069-5022-a995-6d95753dd04d", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-transports." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:1ca3495f-d3ae-5eaa-b77d-5e518d9d8045", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-transports." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:a9da5d6d-ec85-5a4c-8cd2-f53b69d6ec50", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-transports." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:5622a2dc-6b49-5e33-b2e6-6bab43eb518e", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-transports." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:44695159-5cec-5973-88e6-f9ef7946e817", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-transports." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:c0f9fe56-0819-509e-ab2a-5419b54e1104", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-transports." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:6a199e1f-196a-5a3b-addd-652cd183f2ef", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-transports." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:f96beb4a-6fb8-5ca7-a47b-43093f062679", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-transports 3.5.11-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:4ab4f265-2211-5764-acad-286de26fff83", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-transports." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:5fafdf36-d52d-5210-a658-da2e41ef67c4", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-rt-transports 3.5.11-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:746c4e72-3c6c-559f-aa57-bb72e0877d4d", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-transports." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:deefa115-a0bf-5acd-a230-d09c68b8d67f", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-transports 3.5.11-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:3bace96f-a70a-557e-b92d-c34d367c0a50", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-transports." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:ddf78e69-d4de-5504-99ae-ee81f3a02533", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-transports." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports@3.5.11-tuxcare.7" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports@3.5.11-tuxcare.7" } ] }