{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:ef43e4e0-d5a0-5b06-83c4-62be4733e579", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.5", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-transports-jms", "version": "3.5.9-tuxcare.5", "purl": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.5" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:30f9f839-3656-5098-9ef4-00685be67d8f", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:37d9bef9-71cc-5c58-8cbd-e4bece884ba0", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:5257f012-0f9d-5f3e-b824-47ed1657fb30", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:77fd8a6d-8b98-592f-9973-5408e261d8c6", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:bb409abc-ac02-5e63-997c-10eb47e54ae9", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:99b7512c-4291-51bf-a064-dbd80a41654e", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:0e4bc025-f109-5a41-b26c-333bf6749a7b", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:c2cf97f1-b526-5400-9b6e-583339944db1", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:e7fbc1c5-ffbc-5ad6-9c53-26f4ebfc279a", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:42968b89-c68c-54fc-a9cf-9c26142cef24", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:9c991a07-8323-562a-953d-51b0298b6061", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:dcb428e2-7d8a-567f-a9fa-fea3a842fa50", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:3efc149c-06ba-54be-80fa-8ba3fc7311e0", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:d24ad61b-b991-57a0-a508-b2a34150776d", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:8897aaae-f043-5558-8eeb-04ff88c542f1", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:6ab59db5-a694-50bc-ab36-d9924e20e7d9", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:87baafbf-b7bd-5080-8070-e31d4b8d6b89", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf:cxf-rt-transports-jms 3.5.9-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:fe298bec-a6aa-58c5-93ec-6e65e0bd78e9", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:42a6db0f-b08f-5339-af8a-f4a815c10182", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:673bcd8e-b408-595a-baab-ccba6acc5ba5", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:06103042-12ac-5717-840f-bfa49140ac74", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:f58fbdc4-5393-501b-98a3-7ecae940a791", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:fa043f86-7f15-5ebd-859a-7141fc47b8c6", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:45c8535b-2b4a-5245-9bd0-10958d9ec299", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:1f6d4447-b128-56a5-a29c-648935140928", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:86bfddc9-c185-5121-b702-211d21b1877e", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-transports-jms 3.5.9-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:b7d8e447-8140-5f97-ac3c-a2491b843647", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:16771402-5f25-5309-a427-cfdf651cdd1f", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:ef7659c9-3aec-5369-81e2-71d74d8f5485", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:f9d7d2fb-7a05-51b6-8377-25677edd0375", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-transports-jms 3.5.9-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:f6b2cefd-6d94-5551-be76-013bbe34277f", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:3e6b26cf-8723-549a-9d5a-efdc80a955c4", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:c258b223-832e-531b-8eca-d9d8a500ed17", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:fffa8c87-988c-59a3-82e3-6d26abdaae1e", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-transports-jms." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.5" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-jms@3.5.9-tuxcare.5" } ] }