{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:2f7d41ac-e144-50c4-90f9-e95cbee11d03", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-features-logging@3.5.11-tuxcare.7", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-features-logging", "version": "3.5.11-tuxcare.7", "purl": "pkg:maven/org.apache.cxf/cxf-rt-features-logging@3.5.11-tuxcare.7" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:5859dda1-18f1-57b8-9589-aa540fa34bfc", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-features-logging." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-logging@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:e1f26a56-93d5-5040-8538-b24c55e73673", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-features-logging." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-logging@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:7b1df346-41b2-5247-915f-a73e10a8ada2", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-features-logging." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-logging@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:6eef3a56-774f-5b32-9435-67a5bace2b0c", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-features-logging." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-logging@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:99fbc046-f27e-5a6d-98c5-8dc0b2233584", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-features-logging." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-logging@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:16b51c9f-41f9-5711-9097-c0dd5a5bd50c", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-features-logging." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-logging@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:4f9a74e4-4dad-5c17-9c57-8ee5bc1c920c", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-features-logging." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-logging@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:eec87e0b-5967-57a8-9c59-73f58252b40b", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-features-logging." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-logging@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:aebdc368-53f0-5e7a-93b8-dc1dec0b031b", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-features-logging." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-logging@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:9c533e96-75e1-5fdf-8ab7-7241bb6fe8f8", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-features-logging." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-logging@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:371ad889-35a1-5df0-9314-529c141c5166", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-features-logging." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-logging@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:0416da1d-89e8-5c99-a5d8-a2dcdf5ae1fc", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-features-logging." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-logging@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:58315d2a-3e20-5237-b578-219bfc74f374", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-features-logging." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-logging@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:dd47f7ed-2e9c-5dfd-b476-5b1913826e2c", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-features-logging." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-logging@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:dfb903f4-8392-5cb2-a6f9-e6cb5cd7020d", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-features-logging." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-logging@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:e063621b-5504-58f3-b9fd-9be3fdfdf8cd", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-features-logging." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-logging@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:62cca2ee-76cd-5806-889e-4e7f632a6227", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-features-logging." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-logging@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:f365b3cd-38c1-542b-b532-c71137c7fecc", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-features-logging." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-logging@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:a6aa2afd-4e90-563c-8e2c-8b0e5145168b", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-features-logging." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-logging@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:57fbcd27-e852-56c0-acf5-d572bc8be906", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-features-logging." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-logging@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:00ed5342-4c44-51f7-97cb-9d010d8bb694", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-features-logging." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-logging@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:a34cc718-96e4-5b27-baa9-20d3de100755", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-features-logging." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-logging@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:32d3560a-f569-5f10-9560-d126e2e30eea", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-features-logging." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-logging@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:38bacea6-215e-5e61-a6e5-2efa2d0afee6", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-features-logging." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-logging@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:5acd916a-96e2-5010-b690-3bf6927b0214", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-features-logging." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-logging@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:721189ea-b902-509e-8340-588febfcb26f", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-features-logging 3.5.11-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-logging@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:e77fd5fc-1eb2-5401-a439-760d6a3013bb", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-features-logging." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-logging@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:9bf640b8-8dba-563d-a743-eddee97f4dff", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-rt-features-logging 3.5.11-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-logging@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:abc8e931-827d-516c-9d2b-16e964b53d76", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-features-logging." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-logging@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:c306d308-7805-581b-b9e6-64d0a8d690b4", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-features-logging 3.5.11-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-logging@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:f75c3047-06d6-5a70-9872-c566d6ee5097", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-features-logging." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-logging@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:0a7b8eef-a4ff-5fd6-be78-f7b5a0761ed7", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-features-logging." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-logging@3.5.11-tuxcare.7" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-features-logging@3.5.11-tuxcare.7" } ] }