{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:cf9904e5-3119-5b42-bea8-307181ae5a7b", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9-tuxcare.5", "type": "library", "group": "org.apache.cxf.services.xkms", "name": "cxf-services-xkms-x509-repo-ldap", "version": "3.5.9-tuxcare.5", "purl": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9-tuxcare.5" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:bc0a753c-6613-53fc-89e4-028442c6eac0", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:12df12a4-17bb-569a-b6f2-49d065621899", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:56528365-17ec-5862-beeb-8ee41bb9b83a", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:4f9c8392-10f6-59ac-8902-a5473d770ca1", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:253f7bab-db4c-51bf-ac4f-f37dfccc14c2", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:49f7ea94-b940-57b9-9a33-57dffb73a7c6", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:bc3dee62-8124-50e1-8ffa-809eca24bc20", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:1cdb8b52-19f6-5955-89d9-06596f728aa8", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:cac931a5-dfe0-58ff-a959-b2a5fa469dce", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:9c534c4b-cf3b-57ec-b455-05951dd850a0", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:16e5ed39-68aa-5079-8020-27d60a887c92", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:6f6f0161-16c2-5316-a8ff-1563e4d277ed", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:8edfadd9-ae64-5df0-81d6-4469dfd663d3", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:e51d79ae-2f5a-577f-8265-425600879090", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:6da9a52d-9198-5096-91b0-63342b4511da", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:58b2c1a9-100a-5ecd-90bf-86e50dd07922", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:0d5845af-cd3f-5c5b-845c-83d1f1a763c8", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap 3.5.9-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:b8567920-6c17-56d0-9457-b35c9202d8db", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:58c7aadb-0e82-52e0-afb5-faf086a6f20b", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:40163c57-665f-5a1b-a0c1-1c3a789a16a7", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:bc4f94dd-f7d8-5a66-906f-b806d74ed4c4", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:397fc81e-fe1c-5dbc-98c1-1fa8121c39d2", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:801dece7-7a9a-58dc-bb43-ef53402c4b53", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:7d74b7af-c731-566a-9751-14f06929858e", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:26f37610-6743-51c2-9f1d-ea98c62fd36a", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:c042f768-b4f9-5f28-9702-be3b9dc7aa4e", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap 3.5.9-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:b093866b-0e50-5dd6-853e-386b73203d72", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:7139ec96-c4ec-5f4c-ba46-7d0f06bf642d", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:215b2dde-cad6-5331-8e0a-ff1f7bb683d5", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:11a36b93-e819-5ff8-8d2c-5e149c8e6476", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap 3.5.9-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:4a754ba0-c517-51fe-91b0-56d49c00f082", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:31626105-00e6-5033-a0e5-7e891fd322c8", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:73802bb0-d756-551d-8b3d-58cb06ad64c6", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:8393b61a-cb5a-593f-b00e-22b4dc50576b", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.5 of org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9-tuxcare.5" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-x509-repo-ldap@3.5.9-tuxcare.5" } ] }