{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:ca00395f-cb8b-57a2-bcaf-161daa58f53e", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.7", "type": "library", "group": "org.apache.cxf.services.wsn", "name": "cxf-services-wsn-api", "version": "3.5.11-tuxcare.7", "purl": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.7" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:43446b90-4b3a-55d0-9e30-dfeca39dd0c1", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.wsn:cxf-services-wsn-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:0272cdd9-1d60-58f6-8e4b-daf5f941a28e", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.wsn:cxf-services-wsn-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:02fe148c-9110-54db-90ff-12f95dcbab48", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.wsn:cxf-services-wsn-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:c19376eb-819d-561d-b3d0-01235c95c572", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.wsn:cxf-services-wsn-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:23a0d297-9f4d-5c6b-a193-cff68c8ac391", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.wsn:cxf-services-wsn-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:0b511484-5ec9-5a90-9769-f20c07c474b5", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.wsn:cxf-services-wsn-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:9d420354-fc02-5714-a125-5892bc227a8b", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.wsn:cxf-services-wsn-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:6df8ee64-e747-5329-951d-354e66c045a6", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.wsn:cxf-services-wsn-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:b5628efd-51e8-5b8b-9d48-5e93b9a3a267", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.wsn:cxf-services-wsn-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:ed35ba69-d1a4-56c0-9a15-82b60c630db0", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.wsn:cxf-services-wsn-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:55f7639b-2d20-557d-b554-8c9ec09f6bbe", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.wsn:cxf-services-wsn-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:290e30d2-1cbd-5eea-a496-4b1b7a374bf7", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.wsn:cxf-services-wsn-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:65799e1b-4d02-53d9-857d-be64a012a02b", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.wsn:cxf-services-wsn-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:45ded97e-efae-5e83-b3a8-a7efa0e67fe0", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.wsn:cxf-services-wsn-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:7710ac3f-6359-5ecc-aa31-8ff41b6c0ed2", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.wsn:cxf-services-wsn-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:f51d207b-a6e5-5771-acd8-f716e537b6e8", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.wsn:cxf-services-wsn-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:c4e70cd4-d911-5f79-bb67-44e44d5d6f28", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.wsn:cxf-services-wsn-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:b59158e4-a574-55f9-8f3c-351598d2d04b", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.wsn:cxf-services-wsn-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:af53da66-819d-5222-aa35-996e7472c8f5", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.wsn:cxf-services-wsn-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:eb898c42-13b9-52a3-b85a-7443a3fae34a", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.wsn:cxf-services-wsn-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:8f519b84-8774-5efe-a4fb-2fe6dbf31354", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.wsn:cxf-services-wsn-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:3d33c519-339f-5c43-ad55-b81d40469879", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.wsn:cxf-services-wsn-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:844af821-c2f1-59b9-8076-484083e396af", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.wsn:cxf-services-wsn-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:cf083baa-d728-58ae-b346-e8821782d02a", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.wsn:cxf-services-wsn-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:9c5f317a-98aa-5de4-b290-4198413874bd", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.wsn:cxf-services-wsn-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:737e0c05-9c2c-57b5-bec5-2247db84f1d3", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.services.wsn:cxf-services-wsn-api 3.5.11-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:31849cb6-536a-514f-9831-07f7f4e8b64f", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.wsn:cxf-services-wsn-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:4ef01504-a80e-5f72-99c4-f8bde4a751db", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.services.wsn:cxf-services-wsn-api 3.5.11-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:3138dbc6-8dd6-5134-b8f0-d5ada1c4ea94", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.wsn:cxf-services-wsn-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:1b61f4c6-d615-5620-9920-d6cb5ec9211f", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.services.wsn:cxf-services-wsn-api 3.5.11-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:863f4fc5-3bc4-5df6-8b3a-563d2c2e6f78", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.wsn:cxf-services-wsn-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:ca6352d7-2b0e-5b56-9623-408a595e8c29", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.7 of org.apache.cxf.services.wsn:cxf-services-wsn-api." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.7" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-api@3.5.11-tuxcare.7" } ] }