{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:25f32473-a806-5519-90eb-68005af3a0dd", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.9-tuxcare.5", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-bindings-xml", "version": "3.5.9-tuxcare.5", "purl": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.9-tuxcare.5" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:c3978411-9767-5211-8957-b1f12d6152bb", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-bindings-xml." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:871349ec-909e-593c-ab9f-5f86b56fbb41", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-bindings-xml." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:4d07cb19-b758-57d0-830c-44a11e20d8f8", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-bindings-xml." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:3498152c-465b-5701-86e5-62b97bbcaf00", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-bindings-xml." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:0736fad3-0d39-5279-af39-4f2ceb70d98a", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-bindings-xml." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:54da988e-99f5-5447-84b9-d7ceea3ea4c7", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-bindings-xml." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:94f845ed-98c8-5547-bfd3-50e72515a403", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-bindings-xml." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:0ee8ef28-86e6-5554-94d1-d1100588ac2a", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-bindings-xml." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:920f0603-df45-5181-bca9-3968e780819c", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-bindings-xml." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:8b29cda9-0956-5e72-a8c9-a483fc8e8ff7", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-bindings-xml." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:b38f0e42-23fb-5502-804c-b8329becc5a6", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-bindings-xml." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:88ff401d-3d29-583c-96bd-79b8f6503afe", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-bindings-xml." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:59bd104a-f2cb-5938-8a3e-ea1d00e6d2bd", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-bindings-xml." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:178c9dcc-ec2e-5f27-a06c-cd075110593b", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-bindings-xml." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:3a9a1f41-7542-5fa2-b390-e2c4da678a89", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-bindings-xml." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:f0d7d4d1-112f-5e5e-95c4-886c0beedd6e", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-bindings-xml." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:4b0b0fb8-cf00-5c81-aaba-4cae5949e0e9", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf:cxf-rt-bindings-xml 3.5.9-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:3e720026-0760-5b12-b250-4146ed473faa", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-bindings-xml." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:0915a906-f19e-5a3d-8110-233d10768ac4", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-bindings-xml." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:5bbb66be-f668-5c52-a50e-b00673149cf0", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-bindings-xml." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:cba24c1a-30dc-5614-9dcd-e69270615f6b", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-bindings-xml." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:1e1e22b1-134e-5ca2-9402-db787bf6e296", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-bindings-xml." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:9281f2af-1a42-5394-9086-19b524dae298", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-bindings-xml." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:9cbd20d4-9a76-53fd-bd90-323665a46f40", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-bindings-xml." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:6f662789-7117-573d-99a6-7121a65f1f78", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-bindings-xml." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:86c0f506-6534-5dcf-be08-089b8017da44", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-bindings-xml 3.5.9-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:71a3a6f1-264f-52a1-bd90-f93ce3a9c742", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-bindings-xml." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:1615a268-cff0-505a-9b51-e46834e552a4", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-bindings-xml." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:a6c60804-3e2c-517f-b66e-36c6ae77a8a9", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-bindings-xml." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:317f59f2-263d-593a-9cd2-464da43d4afa", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-bindings-xml 3.5.9-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:397da3e8-6f43-514a-89fe-35212b1f6fc5", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-bindings-xml." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:43bfd6b7-e708-5c93-8bf6-098ceb2af9a5", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-bindings-xml." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:59af015f-5074-5e20-ba2f-c8d5dcdb4f4c", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-bindings-xml." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:7151200f-09cf-5f58-b589-b7b501fa08ec", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-bindings-xml." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.9-tuxcare.5" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-bindings-xml@3.5.9-tuxcare.5" } ] }