{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:9a4c3e96-e67d-5141-b169-a96270f7f0a5", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.9-tuxcare.5", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-rs-mp-client", "version": "3.5.9-tuxcare.5", "purl": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.9-tuxcare.5" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:fbebe1be-0f20-5692-9be2-c1513ab38ad5", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-rs-mp-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:3b2a945a-5203-595e-92bd-0205d97307c4", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-rs-mp-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:42449694-ff62-5a48-8772-609b4950e84c", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-rs-mp-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:e22b5345-7eb4-510d-a320-ecfd8964412c", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-rs-mp-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:19d7fee3-c9b3-5ced-ab8f-20d04a5f1bb3", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-rs-mp-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:d06abe75-701a-500c-928c-5b587e2d80b9", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-rs-mp-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:f5849a4c-765b-592e-8fab-ef9392700cfe", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-rs-mp-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:147258f9-1593-5ad5-9447-f42a923b8d9b", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-rs-mp-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:5e9a1ea3-8cc1-56aa-a852-f9720c2fd5c1", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-rs-mp-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:4098e1dd-c1e7-591a-800f-92bb3b8643fc", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-rs-mp-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:2844a189-cd17-503d-8171-9ddc9652b5ee", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-rs-mp-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:fcf0252c-02f2-5358-aa4a-c76971577afc", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-rs-mp-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:84354570-6b6c-531e-b55f-25fc63b0b5fe", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-rs-mp-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:907f3aaf-7f91-56e4-8a2f-6f935cc6c273", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-rs-mp-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:c1fe1204-e105-562d-990c-968bea43677e", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-rs-mp-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:66f3c564-ebd6-5d5a-ab93-d9d2f5b2d58a", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-rs-mp-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:3f414fbe-80a3-55b7-9d31-e58cbdaf3e97", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf:cxf-rt-rs-mp-client 3.5.9-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:ce67d23a-e409-5134-8e10-3b0e31622487", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-rs-mp-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:dd0a3a5e-7794-5c6d-b296-638f65b489bb", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-rs-mp-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:d9c1736b-8ecb-519f-92a2-7513736d70b0", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-rs-mp-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:a68c12d3-c7d4-5ccd-bb8d-cff45a8f6165", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-rs-mp-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:017ef86f-85f7-5e2f-a7ad-884452a77140", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-rs-mp-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:b312f4c9-b2f7-5458-b31a-6eb7a0b1080d", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-rs-mp-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:4752e572-be0d-5856-990a-0e3a6909a7d6", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-rs-mp-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:59de2401-4a57-59d1-aed7-d5aec2ab1902", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-rs-mp-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:3a1df571-4ed0-5b16-bc62-1c2b8aa58e98", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-rs-mp-client 3.5.9-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:c895a20f-23bd-541d-b307-1ebcc698da53", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-rs-mp-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:e3e09ac4-9aee-5a5f-a87e-e567a1f1f4b5", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-rs-mp-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:0fa2cd7c-6a24-5f40-ad6f-ad1e3407b95b", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-rs-mp-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:0c20b608-85dd-55f0-af1c-5432a718d6f9", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-rs-mp-client 3.5.9-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:105fd5ec-a453-5294-8d5b-14116985f94f", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-rs-mp-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:b129fb13-d791-517a-99fd-2de7726b8d25", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-rs-mp-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:76f4724f-b791-59fe-8b3d-c2fb111d6e53", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-rs-mp-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:61d3217e-9b99-5c09-a9d1-1ce12f398049", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-rt-rs-mp-client." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.9-tuxcare.5" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-mp-client@3.5.9-tuxcare.5" } ] }