{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:bc167cce-a9a8-52a6-bbea-0cd145024daf", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.7", "type": "library", "group": "org.apache.cxf", "name": "cxf-tools-corba", "version": "3.5.11-tuxcare.7", "purl": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.7" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:43ad94c0-45ff-5b2b-8890-65fcae33ea2e", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-tools-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:cbe2493d-b650-5b16-970c-32d75b3b4324", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-tools-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:cdabc7ee-fed6-56d5-850c-1ffbb424e6e0", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-tools-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:6d887244-a132-59a7-8386-bd77676abfa9", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-tools-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:1102c23a-cb55-5228-b45e-8ef1bf8e0dbc", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-tools-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:cc4baf0c-ba27-5e46-94e9-774e158f78b8", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-tools-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:b752c891-6bf6-56c2-bd05-6e032d6227e4", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-tools-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:5d7457b0-570d-5256-a0f9-f6d24ed4467a", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-tools-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:a15ac6bb-8f30-568e-a9b2-26d38e3f35fe", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-tools-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:4346d6f0-e05f-5579-a9c5-a96a6ce8f364", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-tools-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:8c716c48-3003-5daa-b251-e516ca6efc68", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-tools-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:48d51cba-c2ba-5b61-a96a-24287590cc3d", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-tools-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:8689633d-37a4-5f44-860f-fed0e1fe97f0", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-tools-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:f2b09ca1-0c14-54cc-89a1-45eb03bdc9f3", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-tools-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:33900695-cbe7-5be3-8be9-ad3274edec8c", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-tools-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:65f03a40-02a1-5ae9-837a-c6fd6b2efb97", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-tools-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:ee2612fc-1a0d-5f2e-ac7a-1597260e414e", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-tools-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:3fa990f8-5f92-5e85-bb47-0dea5d1a18e2", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-tools-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:2f6b290d-8dec-5ecd-b443-8ff3c32bdc91", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-tools-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:296e5522-6f90-5183-8519-fff5168ae50c", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-tools-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:fd9df2ea-6e2b-5f47-b359-052dbed4ce49", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-tools-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:664e3554-d3d2-58cd-abfa-b8ab43d50704", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-tools-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:aa460bdf-8bb2-576c-a3a7-91a4f35c0bd1", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-tools-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:104faee6-50b8-5d81-9ff4-27b9266f0e96", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-tools-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:a0a8eada-655b-521f-9710-f5ce4f475505", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-tools-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:cdc0172d-3d87-5f03-a63f-172dc6545aea", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-tools-corba 3.5.11-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:e639b253-8362-538c-ae6d-8781bd5400b6", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-tools-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:d0de2a33-d404-5541-a000-e0e94ca17d7a", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-tools-corba 3.5.11-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:c9af9cd9-48b1-591c-87d9-31f92e54d691", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-tools-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:fcad212b-6485-5419-8b34-4e2969ffaec4", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-tools-corba 3.5.11-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:8bbe370f-7ed5-5787-bcf3-52b1be328c1f", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-tools-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:35361220-1fa8-5b7d-8438-d1d84904765d", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-tools-corba." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.7" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-corba@3.5.11-tuxcare.7" } ] }