{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:ef221a65-db43-58ce-b74d-263e4ce38269", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.7", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-frontend-jaxrs", "version": "3.5.11-tuxcare.7", "purl": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.7" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:b9076ed2-f2ee-58d6-a197-b8f75ac5b218", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:385cefd9-83ba-5a3a-82e5-b9a9b7327f28", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:f06fbae0-c85a-544a-aba6-73275e3b69d0", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:d863ed43-eb9d-54be-9c72-8d6cd899a286", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:b21aef01-f04a-5bae-af44-b712200988ea", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:47b8a71f-8686-5466-8b7c-bca07c28e5fd", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:e5379a16-58c9-5d4e-adbf-92af5b866779", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:b22fe798-ff97-5eb9-8b0c-26a46f3aedb9", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:5aa053aa-43a5-588a-8dc0-b47a558c826a", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:e1d1c724-4475-5c1d-8ea1-fec70652c0b8", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:60fea387-c73a-5708-bfa2-c74effe98d83", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:4c397460-5da3-5337-be24-c2b1008caa05", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:b07f3bb6-045c-5913-95db-9866f6989bf3", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:2cde434b-ba41-5ed3-97c6-bfe9956fca0d", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:1b0d8f79-a69e-5eda-96cf-320998ee4782", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:88a3794f-9198-5e4d-b557-4ee9ca0eb5bb", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:7c3ec81a-242b-57ef-a324-1ec5f1e201ad", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:6487b5dc-1a16-5c87-9ef0-68b4956bafc7", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:a5f19b40-b071-5032-bd7e-62f76c9a2909", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:9b518ef4-a9fe-577e-8545-eb6971377d5c", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:f6bcfe59-4835-50af-9d77-5ecfb58d0266", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:cd272f10-444d-5d90-b237-68ccd1aa1b12", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:7dd21349-9146-597b-8119-1abcda22a3db", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:57bd6b10-f26a-53f0-9a25-133fb8ba9edc", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:f938a3d0-dbac-5558-931f-9657d84b7348", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:360c04f3-5693-5e65-a15b-fec8f06f9bf4", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-frontend-jaxrs 3.5.11-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:9cb9f77a-c17e-5260-852d-a53ba24e8a99", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:337b15e0-3873-5973-a5e3-17efe0170ef4", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-rt-frontend-jaxrs 3.5.11-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:9d7837bf-0c88-599d-884c-da4e768536d6", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:23c6515c-ad49-50c0-a82e-8c8e3c1e7e1d", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-frontend-jaxrs 3.5.11-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:795a75d2-5bd7-5364-945a-79424f335e3c", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:48a05fd7-2096-559f-8e71-cceee024020b", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-frontend-jaxrs." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.7" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@3.5.11-tuxcare.7" } ] }