{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:03d9d8f6-ea2c-5ccc-9cde-f770aad051c3", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.9-tuxcare.5", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-ws-addr", "version": "3.5.9-tuxcare.5", "purl": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.9-tuxcare.5" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:066fab25-babf-51e9-8c82-401781b31502", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:b2370543-5726-5543-a874-40a0b0e524f0", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:292bab37-8619-58b2-b833-20ba6206e12f", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:9857d4d1-afad-5a96-a645-743039bad095", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:c3ab1b8d-3fa4-5a8c-82db-1dc6d729b564", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:bfdcb37a-3c9e-574b-bd39-c806122862f3", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:7b21180d-7a66-5e0d-975d-2d995def84a4", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:fd189c1e-5aea-5a29-9eb4-0089f1b1184b", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:e1d33c6e-450f-5eec-a67d-17536529fffd", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:83bd82f4-24df-52e4-a032-bde8422d9f38", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:b20855e1-62d3-5cec-a454-76f73565199e", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:1951b9bc-5f5a-5216-bd7e-207f7eec0948", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:913c71b8-455e-5648-b9cf-60a0a8d86038", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:6fccd7fc-8e3e-5d15-8b88-80fe236bb570", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:4995915a-16d2-551f-bea1-bbd7b314e1d7", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:fde6f02a-86ba-52c4-86d7-f257292a4279", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:da787cc8-fe5a-5a55-80df-5062ffb74a33", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf:cxf-rt-ws-addr 3.5.9-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:76581853-faf4-5c8c-82d7-b3a31a2eb0e1", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:ee837d99-5409-5df6-94e7-3ecd98b6b172", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:93fb2df0-76be-57cd-888e-f6bb197f6a50", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:29caf7bf-ffca-5bd4-a4e9-4123f96e81c9", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:24c6c8ab-c661-5293-bf32-842324f47734", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:c3aa281a-103a-5f0d-840c-500faf85ee46", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:7182f2e0-2b7e-59ac-a82b-16411cee0281", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:cbfdfc40-192c-5b0e-9763-56b1e0d01932", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:f9909c3c-18ed-5ead-9d7e-1f22480a5665", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-ws-addr 3.5.9-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:3f53106e-62e7-56b4-936d-062710d5cc6d", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:29ea08bc-a4a6-567e-8ae6-6b2092e1bc2e", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:079ceb9a-7b44-5d73-8ca7-8921ca74af5c", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:02e7951b-ab0c-58eb-885a-b8dcd09108f7", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-ws-addr 3.5.9-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:18752b37-1605-5143-bb9f-ea2a3af4a7d3", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:47e3485a-b857-5e25-b4fe-2e4855c764d1", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:0b2df3be-c852-543e-bdbf-e5eb26ec22be", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:c2a74ab7-c591-58ea-a555-becb13a362f5", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-ws-addr." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.9-tuxcare.5" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-addr@3.5.9-tuxcare.5" } ] }