{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:934b2d0a-3815-5cd5-87bb-f12fe2db0d5a", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.9-tuxcare.5", "type": "library", "group": "org.apache.cxf", "name": "cxf-integration-spring-boot", "version": "3.5.9-tuxcare.5", "purl": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.9-tuxcare.5" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:9c1b2659-a906-59d1-ac3d-4da66c80cfec", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-integration-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:6a4baae9-8223-56a3-9f10-3c4719f50064", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-integration-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:bee341c9-447d-5666-93ad-0abe6e117351", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-integration-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:109d4087-5c8e-580d-a32d-33a9423e2155", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-integration-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:c8af77ca-b9d9-5ae3-b2c4-7f689284a520", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-integration-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:2a2db5a7-6319-5cbf-beb3-e8ba81575f5e", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-integration-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:284d73cc-1a92-5114-9277-5bd322a9444c", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-integration-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:2b62433c-049d-53e3-8fb0-85d4cdcfbbbc", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-integration-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:7311849c-ecc7-57ac-a171-37cc3244afe9", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-integration-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:82adff99-4c51-5c5f-a0db-429cd473f0c2", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-integration-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:86eb90a8-09c0-50f7-88fe-6d8f0f97b87e", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-integration-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:6dcdfc57-976e-5ccb-95e5-f3937925e336", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-integration-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:3cdd5bfa-8465-576f-a490-ec4a561b906f", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-integration-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:37806b85-dd10-5644-aae4-bd0ea4bf0a46", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-integration-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:5da21e77-3441-542e-99a3-281c651241b0", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-integration-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:202f6985-f610-58fc-9f9b-a5f4ef2ccb0b", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-integration-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:7585e38a-0894-50b7-ad2e-70807ae99c83", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf:cxf-integration-spring-boot 3.5.9-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:8ae121ff-8f6f-58af-81a7-b1897d797ee5", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-integration-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:3ed7ce5c-8f47-5970-8b41-8a02dd841f93", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-integration-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:17cf74a9-09b0-561d-8d41-d3932a2b91df", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-integration-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:f7a0b3db-a6c1-5113-aed4-e43ff067204a", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-integration-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:26f4ba14-88a2-5c76-a1a8-f6548829ed69", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-integration-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:2a5a8f3d-f77b-5142-b8a5-1f5e3906ab6f", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-integration-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:c4d163e7-da20-5220-aeee-6d96e5b36b67", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-integration-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:6b9e211c-627b-542b-a9d1-2653910d3d18", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-integration-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:f581f229-4ed7-55dc-8754-a7c5f641d14a", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-integration-spring-boot 3.5.9-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:8d433bc2-f62c-52a7-923a-b7951ec36d8d", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-integration-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:775cb6bc-fd5a-5937-8a75-0d3451765e6f", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-integration-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:174285c9-e1b3-544e-a358-d2adc22e1545", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-integration-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:f78f6a1a-836e-5373-96b4-fd49c6e0266f", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-integration-spring-boot 3.5.9-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:121a642d-0adc-51ba-b162-fc3e29d8c8ae", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-integration-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:b679a744-c22d-57f6-96fa-98c57ffccb90", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-integration-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:7cdf4663-ad3e-5320-bf7c-3031cfab454c", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-integration-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:593c24f4-b2f2-5ab5-ae24-0e946fa94f6b", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-integration-spring-boot." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.9-tuxcare.5" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-integration-spring-boot@3.5.9-tuxcare.5" } ] }