{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:76a01c2e-0956-50a4-8797-4197ea1e067b", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.7", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-ws-addr", "version": "3.5.11-tuxcare.7", "purl": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.7" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:d9acfbb9-5a79-50d9-997e-2cc0a3f84256", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:44722935-631b-5595-be8e-994a171fb55f", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:c606c4d2-a8a4-5aea-ad3d-0f6ff4e47f13", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:90a2807e-f7f2-5500-abca-7d41d8934d94", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:77d18fa4-7f7b-5d30-abdf-0447e805eb37", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:3144cfdc-3d7b-51e7-b14e-f2bcc2b5bac5", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:c327ef4f-031d-59bc-9a5d-993af88a65bb", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:92fb3157-26b7-5f1c-90c2-4e540fac42fc", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:bb10819b-4380-559b-9037-e83d660133af", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:41cecaeb-9b69-574d-939f-379e0b12c319", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:5b1dc0e5-c48b-5b5e-8f36-9f80bd224813", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:e85bcc85-7bae-52f6-a85a-bf7d49ea1a26", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:85d4bc54-cfc9-580f-87ee-a2fce422b1b9", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:f8061885-14f7-52d3-aff7-4e5ec254c936", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:907a470e-9334-5913-8865-029fcf8f2616", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:2f1eea5b-ad4e-51f4-84f9-b6c6ad1559a0", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:2685b94c-79b0-567f-ba11-092632755395", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:52ba966d-fcc5-5497-96eb-ae5af7f49059", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:600f5934-3eaa-5b9f-9b04-20dc31ebe20b", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:89a62ea9-7fbf-5db8-89db-65ed3e2886fa", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:2eec82a5-31f6-5af0-ba05-4be606ad6e49", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:6dcad688-3ad5-5760-8d02-4655d786c099", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:bd4987bf-f239-5bae-87fc-fc7b20b997fa", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:76b10024-62f2-56d2-9ba7-aa7e8b05e93a", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:e47f3580-c709-5445-bdb4-7b731c9ec69c", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:190b314d-5fe0-5573-acb7-d9aebdaee905", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-ws-addr 3.5.11-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:65ce9679-3f57-5e41-a29d-ea672ea98910", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:5fd567a4-9bcf-5062-8f46-e5241758b2d8", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-rt-ws-addr 3.5.11-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:c81c72b4-9aa9-5687-933f-235260b1db55", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:4929b2c0-1d72-5584-ad1a-8fe7c8f16017", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-ws-addr 3.5.11-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:fe08b32f-267f-5485-a581-9b6680532086", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:ca5ea5fd-2039-5a79-8bac-40126a49055c", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.7" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.11-tuxcare.7" } ] }