{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:bc3f4dc4-bb21-56bc-9c2d-aff5116537ae", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.7", "type": "library", "group": "org.apache.cxf.services.xkms", "name": "cxf-services-xkms-x509-handlers", "version": "3.5.11-tuxcare.7", "purl": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.7" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:6c6f87b6-9228-54cd-892b-ea1a44f2a4d1", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-handlers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:62f98ec1-32cd-5489-976a-604f2f4b730f", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-handlers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:637e3107-0290-5507-824d-77b7ab0baf13", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-handlers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:dbec56cc-9b07-5c56-94cb-9d5157090e48", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-handlers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:a3acf678-8913-559d-8023-379f21a3b7b9", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-handlers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:019f3ad0-f147-5ff9-a0ce-88144289d523", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-handlers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:5d821e9e-44fd-5828-867e-86b22fe48680", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-handlers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:b3f27d68-c7a9-5f46-a04b-6eeff74a97df", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-handlers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:3dc7344d-fc81-5287-8038-5a8261db7cb5", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-handlers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:d303e74c-6ef5-5f11-bc1c-5ebadde71cb5", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-handlers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:5bc6f7bc-b67f-5fa3-bfb0-98499ef911cc", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-handlers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:5509ba48-26a3-57c2-908f-feabde17d4fb", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-handlers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:73623574-2a58-5d56-b249-cdaacf54ea66", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-handlers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:52b53fd4-5829-5066-8ae9-b134640e2d58", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-handlers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:57326ae5-6b33-5e4a-8da8-8eedb37c04ce", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-handlers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:59ea366a-08df-5ece-859e-f0f69d421ff0", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-handlers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:4472268b-182a-5d4d-944d-b678f722b115", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-handlers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:632e763d-1854-5f3b-b0c6-12eac3f362df", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-handlers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:dc2d8172-7abd-508c-81e3-71e326ac3568", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-handlers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:6e977d80-cdba-5ee1-ac56-1fcc0e425323", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-handlers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:459b1afd-3ce4-5549-935e-64e551d68837", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-handlers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:5f940627-e37a-5dd4-a2a9-879556613ca8", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-handlers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:29ef5793-1847-596c-8bf7-edc00ba3270f", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-handlers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:b676a1a8-8de4-5d5f-aae4-f5f9ec5f640a", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-handlers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:9845aaab-5fc3-5d71-9b94-9a591c971b97", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-handlers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:6417cf47-acd3-5df0-ae08-a86d211d5242", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.services.xkms:cxf-services-xkms-x509-handlers 3.5.11-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:af911206-9ebc-5092-9675-0f2cb2472a24", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-handlers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:1facbe36-c554-5b32-afcc-7af1d196f5e4", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.services.xkms:cxf-services-xkms-x509-handlers 3.5.11-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:eeef3bb5-d69c-5ef0-9a23-e2f3435adea3", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-handlers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:309bd43a-4641-54b2-bf2d-550e83327b10", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.services.xkms:cxf-services-xkms-x509-handlers 3.5.11-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:7de1b54c-ee83-58ee-b22c-dab216546e76", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-handlers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:4cc7b60c-9d3a-5cd7-a10e-f3cd2e6e1b30", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-handlers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.7" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-handlers@3.5.11-tuxcare.7" } ] }