{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:e8e678d1-170c-589e-9a09-9a1e16197a15", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.5", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-frontend", "version": "3.5.9-tuxcare.5", "purl": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.5" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:ef77fc6a-e3c2-5af6-b871-405676ffe4fe", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:4ab13652-2ca0-56f0-9fba-354d4a01713a", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:9c82754b-f06b-50ed-b9b6-3fb1e24942e3", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:4990bbd3-633a-5479-9e84-aa6e9a8d83ae", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:afd633c5-a3de-5825-be68-601ad2eca0f9", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:b6c9ad78-123b-50b9-9eba-4356e37dbbad", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:0eb0e9a7-eb1b-56b1-9208-e5105d861f3f", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:af9a8d7f-825b-522e-8c48-819543f1b40e", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:38da10f3-298d-5bf6-9bc3-b85f977ba5fa", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:21342079-0cef-503e-931b-bda9076bce1e", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:5a17c969-e819-5009-9755-d75e1da52d50", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:9d2d9655-1892-5c7d-91a9-0e3e0199a378", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:58c1315a-ea65-528d-9bb0-c985c600efcd", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:a36a9984-ef61-51c2-bf04-993bf3b71162", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:a6008be6-0bca-59e6-abc5-8def43875e1e", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:d3b9fde9-20c9-5a5e-8391-0f601b8e7bb4", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:fdec0bf9-ca23-5b4a-baeb-2e1536c12f53", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf:cxf-rt-frontend 3.5.9-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:80b7a99c-0ef8-5ad1-8471-decb915e812d", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:24e033ef-aeb5-5590-8895-8a2c8dfb7bea", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:c28ab06f-0d59-5383-a69f-9f7e05d4299b", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:101c4664-f7d1-518d-ad2f-15b350132009", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:e935c29c-3d1a-535f-8a18-7d9763ec1950", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:25c8d419-425d-5f20-9cf1-3038d6e9ab77", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:44e466a1-bdd8-502e-a768-b0fc05f8406a", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:29f9adbd-4f7a-5832-87d7-eda78d908ceb", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:566fd1a4-b33a-5c3e-8c12-dcfc1b0525aa", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-frontend 3.5.9-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:51ebbee2-e35f-5782-b365-cb46e771b029", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:5a746c48-0688-5c17-92f3-4ef3ce5c6df8", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:2005e7d2-9939-5597-a335-b4ffe58b5d72", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:a7961358-1be1-5d00-bf86-a4ca7f751ff7", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-frontend 3.5.9-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:37074b9e-0303-52ae-b37a-3b7583d8a9ec", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:bb5bb212-3fa2-56a1-896e-d33536e5661a", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:c62caa55-e8cb-5e16-ac97-c4db43d46039", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:14b8df1d-3718-5e62-baed-8c75355b5d6b", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-frontend." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.5" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-frontend@3.5.9-tuxcare.5" } ] }