{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:4105b200-5ab4-5279-83c4-116f7be0a937", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.5", "type": "library", "group": "org.apache.cxf", "name": "cxf-tools-wsdlto-core", "version": "3.5.9-tuxcare.5", "purl": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.5" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:293c090f-7eda-5f70-b360-6ae3d625bdb6", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:7b49ad46-8c61-522d-9b93-b0d507690a5f", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:ac057fbf-a573-5616-83fe-a3c5a124d220", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:f273cb9d-7027-5168-98f0-b371813e42c5", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:4fae6262-6ad1-5369-8651-5bfed453e4e3", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:07d111b9-fd77-5df8-8197-03fdb566d25b", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:3d0f26b0-0b4e-597b-bf14-9d20a44303e1", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:77cbebc6-bfb5-5296-a976-ac36eb30e712", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:6c9dfe31-882e-51aa-ba66-389d51dfdcb1", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:0a817240-a128-525c-8961-6e25f98a49d6", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:310a507f-34c0-51d1-9a9f-e60820f6f64f", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:b0a847fb-71cc-55d2-8b5b-822b12eb6f5d", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:7ff5629c-d9ee-5ee2-9355-f2bef7ece069", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:9c8208e5-75cc-5f26-95bb-b6068caf2bde", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:0e504fc9-7228-5750-ad68-43af1a19dd89", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:8e30d332-d716-5c05-bbaf-e889fff83cd2", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:17926a72-f803-5619-9d75-fe62e36de9e0", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf:cxf-tools-wsdlto-core 3.5.9-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:47df422e-e43f-5bd0-a213-6c6ebbcb0c42", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:02840612-9736-53e8-8ee4-47854f1ce3fd", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:519ecd0f-35f6-5b4b-b910-1567d79dec21", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:f8ece0c2-5e6b-5561-aa64-8a82ab571111", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:90946352-aada-5dfb-ae0d-9e90ab55e040", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:7db40ed5-5aa1-5820-b88b-5a7884c8cb35", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:cc31230f-332d-56fc-9fba-097dca9a95a0", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:2ae470e2-79f6-59cb-a3e2-ab0ba2c01025", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:5bae4bf8-6d76-53f8-ae95-d80d38647949", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-tools-wsdlto-core 3.5.9-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:73bdcc35-6976-545e-bac5-d868047912fc", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:e3009e02-5221-558e-93bc-a5fc5d3b47aa", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:ab07ea9d-751c-524a-ae0b-cef716e8dcf3", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:6d78f313-b160-570f-83fd-8722f48b549e", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-tools-wsdlto-core 3.5.9-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:ea87a59b-4d39-5807-b673-f7e2df2793f0", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:e3b84e29-c15f-5518-9a07-5d38a8fcaa2e", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:141560ce-6b92-537a-aa68-1e38cba7263a", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:ba7fd40d-837a-548e-9a27-a1dbb51cf4d6", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-tools-wsdlto-core." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.5" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-wsdlto-core@3.5.9-tuxcare.5" } ] }