{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:c49935f5-653b-5c6d-a0bf-e9d1dde86e12", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.7", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-ws-rm", "version": "3.5.11-tuxcare.7", "purl": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.7" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:67bfbf7c-7646-5d2c-b105-f636b5b06b8c", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-ws-rm." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:c38356ea-552a-57cf-9bb1-c859543dfb84", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-ws-rm." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:3b36f4b4-9d7f-592f-abce-c2beb10b547f", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-ws-rm." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:850c0658-dd82-53d3-977c-78d652c40d5c", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-ws-rm." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:079683d2-f263-58a1-b257-2b30a918135d", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-ws-rm." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:ad9427b3-b389-59aa-bf33-2c58aef9a907", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-ws-rm." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:a5e3941e-f793-51a2-a476-2cfa9eb500a0", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-ws-rm." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:086e3d4a-f6b2-599f-98cd-ba744ce7becc", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-ws-rm." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:47be102c-ee88-5b31-b18a-83fce801afa1", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-ws-rm." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:dade71e6-a8c5-5440-924a-973266c0dc15", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-ws-rm." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:d22c202f-d8dc-5593-825d-411df18f2317", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-ws-rm." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:d84ef015-8595-502d-8447-5c2937150bbe", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-ws-rm." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:5ad65cde-ab40-5b6b-b42d-d4ef829ddef9", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-ws-rm." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:9477f766-385f-59e5-9598-6d51d96a9ad3", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-ws-rm." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:63620e0b-c7f8-5d3a-bec9-abfd1736db81", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-ws-rm." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:dd131365-ef3a-54b9-aa72-7a4634d98556", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-ws-rm." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:9c4d6fe0-7adf-58ca-bb3a-1b29ce50713e", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-ws-rm." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:c01df2c7-5b81-5e48-938e-8864a8d7e9b3", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-ws-rm." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:20bf15be-ab67-5a03-b3ac-e49969d57140", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-ws-rm." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:e0d96577-0bc8-58ec-9f89-fb11644fea17", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-ws-rm." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:f963232f-0861-5d49-8a12-e4a6d0adfd05", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-ws-rm." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:2b5579af-e589-5c45-94c6-a7cce0e59878", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-ws-rm." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:ca5bd748-27a3-58d7-af45-c9b8387f5703", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-ws-rm." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:2c77b0b1-2d01-5fef-8954-daf8deba0315", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-ws-rm." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:26101647-2dc0-5b96-a541-826eb401a91f", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-ws-rm." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:9cdc198e-b7ea-5855-82d3-18d7ea38b1a9", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-ws-rm 3.5.11-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:162fb092-a4db-5707-9a26-1d1631eddaac", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-ws-rm." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:88f3d690-7830-54ce-8bfa-ce13155ef3ec", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-rt-ws-rm 3.5.11-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:6eadd6ef-d634-56eb-93ed-947f6c6bde65", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-ws-rm." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:20ae0acd-aa50-5b31-a8a0-02aac1066ede", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-ws-rm 3.5.11-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:76327833-5a55-5ad9-bfa7-709aeedf5c79", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-ws-rm." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:3009373c-31b0-5786-a22b-43cef3aac3e5", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-ws-rm." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.7" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-ws-rm@3.5.11-tuxcare.7" } ] }