{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:55067941-bf68-565a-b9f6-cda4ca64063b", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-corba@3.5.9-tuxcare.5", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-bindings-corba", "version": "3.5.9-tuxcare.5", "purl": "pkg:maven/org.apache.cxf/cxf-rt-bindings-corba@3.5.9-tuxcare.5" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:164c1fe7-7f94-52ae-afc5-60eed019d1a7", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-bindings-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-corba@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:30d5b8b3-2eaf-52f6-b898-ba54b34900a0", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-bindings-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-corba@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:9599d1e4-7a0a-513b-a036-c9f470f27fdb", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-bindings-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-corba@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:5dc2afdf-41ed-55f3-b358-c8e6e714a654", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-bindings-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-corba@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:f7d88876-2f25-5dd4-b802-532e1d73b0f5", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-bindings-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-corba@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:ca6248e1-76da-5f0e-9bd6-3512207cb59a", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-bindings-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-corba@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:f888621f-e0e9-580f-8cad-981d0ee8d24e", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-bindings-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-corba@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:e29202a0-8369-57fa-a788-30815ab205d2", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-bindings-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-corba@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:6987df5d-0707-5c4e-8835-dc42215d713d", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-bindings-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-corba@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:72ff05eb-aaf6-532d-b806-23fe76b91bfa", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-bindings-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-corba@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:21ad1c76-014f-53a5-ba5e-cc583b3ebb16", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-bindings-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-corba@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:867f4c17-d139-594e-9495-1dd833fe35f2", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-bindings-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-corba@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:26e72f6c-979a-50f6-9880-37ca46640b6a", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-bindings-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-corba@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:cb038824-4cbf-5927-9620-110cb01b31a3", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-bindings-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-corba@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:fe5ada63-1f3e-5132-abc6-8a8986b567eb", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-bindings-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-corba@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:0102ce59-309d-55f4-9b78-dc2e3d0cdcb2", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-bindings-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-corba@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:31ec2403-6c20-5df8-b91f-d25e34effe85", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf:cxf-rt-bindings-corba 3.5.9-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-corba@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:3a11ac28-319e-5670-b98b-57506cf783f2", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-bindings-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-corba@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:7a2836aa-8468-5c3e-acb0-64e7cc957c26", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-bindings-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-corba@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:432a69ef-be1c-550e-bba7-5d80d1e4f9bb", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-bindings-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-corba@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:df70776a-cc83-54dd-922d-c9a61eb4cf6c", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-bindings-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-corba@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:2bf22734-be77-5e36-8970-18f72ae214c8", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-bindings-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-corba@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:51c650f0-2930-5c6b-8f56-59b19a5f5be8", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-bindings-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-corba@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:18aee0ec-f3c2-5ec8-b8c2-69d260d8dff4", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-bindings-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-corba@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:c8ee59af-c7ed-50d1-b1e0-bff58bf00552", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-bindings-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-corba@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:1a5c6ec1-a6ac-5c00-bb6e-3aa2bdf15655", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-bindings-corba 3.5.9-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-corba@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:0523d2ec-0e9d-5b0b-8e81-67e2558f329d", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-bindings-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-corba@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:05856385-fefb-56e1-b6dd-b2f683d2c939", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-bindings-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-corba@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:697606c7-4fd9-5add-b1a6-abf864e59cab", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-bindings-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-corba@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:3a6f5293-69dc-5093-a7c8-c68ac92c6343", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-bindings-corba 3.5.9-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-corba@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:994bc65d-1769-5185-b959-3b0a8379b7a1", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-bindings-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-corba@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:a637652e-5cb1-52f9-98aa-3595a4bc48d9", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-bindings-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-corba@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:983cbc4e-87cf-5faa-8d25-2e77dbb67352", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-bindings-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-corba@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:d6ac7a7f-ad0e-52a6-ac49-ebaf320bfa97", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-bindings-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-corba@3.5.9-tuxcare.5" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-corba@3.5.9-tuxcare.5" } ] }