{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:f4e54e13-875a-5abd-bab5-b4124acbc11a", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.5", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-transports-local", "version": "3.5.9-tuxcare.5", "purl": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.5" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:c62b6439-f13e-5b65-962b-46b4f14f7852", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-transports-local." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:40311ea8-f2e8-54ff-b20d-c326d2d215bf", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-transports-local." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:296d99e4-f549-5b30-bd2d-86819e97cae8", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-transports-local." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:46abaca4-e28e-5ea7-9012-cf518341b7b9", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-transports-local." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:415ec07f-4228-53ae-85ec-fc8690179851", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-transports-local." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:c1ee4853-f07b-5af8-a863-0231269afdc9", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-transports-local." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:c6ad8285-2f0d-5ed3-b2f4-18bed8e2547f", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-transports-local." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:45edebc0-262e-5a1f-852d-1374266103d7", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-transports-local." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:71209077-f8fc-5980-ad24-6ae5e1c93bb7", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-transports-local." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:7f6a3a3c-0683-55eb-902b-ba79a0ed0bdc", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-transports-local." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:5243fe26-9845-51e5-8f75-b968793cfb27", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-transports-local." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:f417f661-82e5-5a7b-90ac-337a33be4b0e", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-transports-local." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:242b0e09-4eec-5de0-b514-eb5fee91c879", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-transports-local." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:cc77b3c8-1078-5d6e-9798-4dc30166004b", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-transports-local." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:21a0eafc-7611-5057-a0e6-ed2e9c59be78", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-transports-local." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:75cf0c1c-c3e6-528e-96f7-3b0c00f568d7", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-transports-local." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:9da43cfa-0810-53c6-8e01-6b66540b8116", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf:cxf-rt-transports-local 3.5.9-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:9c6d47f7-afe1-52a8-b2e2-37957049dac6", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-transports-local." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:16a95fbe-9320-5ff8-a229-9033a3574712", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-transports-local." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:d00b9a65-ea42-570f-9247-398f2fac6ca5", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-transports-local." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:e50edbb0-802b-53dc-8446-8407e9091774", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-transports-local." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:06b3b308-fddd-547c-ac83-b183d0d5bab3", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-transports-local." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:5e997314-2abb-5964-88a6-5bb80bf56774", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-transports-local." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:8be5d7e9-bded-5472-9c82-81220396943b", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-transports-local." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:914873ed-24dc-51b4-a339-203e36a76f2a", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-transports-local." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:cc6cf899-ed5c-59d4-a9da-0070f9aecc25", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-transports-local 3.5.9-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:63a09843-971b-5143-8a33-89b232b2bc61", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-transports-local." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:a287df92-2981-50e7-af6c-8195e3c3152c", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-transports-local." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:923ffe1e-c55b-5493-9c50-c62ed7e96d1a", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-transports-local." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:9f397cb2-c8f2-5c62-9df5-dff15ee7ba6d", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-transports-local 3.5.9-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:f3421ae3-e449-59a3-ae27-7b93b2143aa6", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-transports-local." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:5f680349-9b66-52a7-b713-244560b7e3bf", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-transports-local." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:0183d147-5424-58d4-8aec-fc23be44a9c7", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-transports-local." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:0841143c-4945-50dd-b4ba-31ac82bcc3e4", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-transports-local." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.5" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-transports-local@3.5.9-tuxcare.5" } ] }