{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:96eabcc3-29e6-5912-8eb4-96f6e2e8bdc6", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.7", "type": "library", "group": "org.apache.cxf.services.wsn", "name": "cxf-services-wsn-osgi", "version": "3.5.11-tuxcare.7", "purl": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.7" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:2097c9a1-7efa-5895-b16d-3d43632ce4ed", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:fad2f84c-b499-52f7-bfa0-577ecf6cd2bf", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:f07b4a84-3314-5b50-ad14-e1d1d7625a4f", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:22a43e64-8993-58c6-9332-f98a5efb7de6", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:48960229-7a4a-5cbf-b197-f7c607f65aa9", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:fe9e96d2-6f03-5d4f-89a3-dbb3104f0a4c", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:68b37241-7957-57f9-b87e-f2de9a3b8c9b", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:57eb2428-dd8f-5df3-8759-d4efdb9861a3", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:28f2a9f5-eb9f-5a38-bb1e-e30915c27516", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:c40d1a1f-b0f1-501c-bd62-e5dd011eb3c3", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:fac2cbe8-5d8c-542b-ad08-4748b47dbf4c", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:5c6f15be-530a-57f9-a9de-54e25ca35022", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:49e01535-8e3a-5edb-8c90-3a6ad56632f3", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:0c1732e2-45e8-56ed-b33e-9aab21cb084a", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:f40627da-7ba3-54c0-a260-1d2fb86efb7d", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:cbc5adbf-da61-564e-a087-7062b69959f8", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:b7b60334-1c32-55f0-9f4c-b4183c81b9d6", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:6661b7fd-1f2e-5b42-90b9-f118de43c954", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:f96f56ac-1ce4-5428-a789-3ba1a9be92db", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:39787a56-3921-5bdd-bbd9-44ec3047783f", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:2d8cadc8-c08f-5064-99f4-7d359e152c35", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:c197e414-85b4-5096-a518-bde988ddc7bd", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:e217b568-edc4-5ffd-b2bb-0a06c588ecf5", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:e26cc334-d38d-533d-aa54-6b53263196f0", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:b08f05c4-2f92-5b30-b104-a4901920c7c9", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:3b54186c-29b7-572f-affb-4ec3ff6d8ccf", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.services.wsn:cxf-services-wsn-osgi 3.5.11-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:c050d104-bf6f-5097-950d-85ec983c6962", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:5623c4bd-8ecc-5c4a-85a6-645260743846", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.services.wsn:cxf-services-wsn-osgi 3.5.11-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:9ad4ccf4-a4aa-5582-be43-458f6591b96f", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:f9d63fd1-da95-57e2-89a4-59d6f532859d", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.services.wsn:cxf-services-wsn-osgi 3.5.11-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:6e58e506-075c-5048-a344-5c6cef99318b", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:aa2287e0-56d7-579a-bc5b-e2fa8054828a", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.7 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.7" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.7" } ] }