{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:be0cb7d9-628d-5019-861d-9f97a8934e92", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-common@3.5.11-tuxcare.7", "type": "library", "group": "org.apache.cxf.services.xkms", "name": "cxf-services-xkms-common", "version": "3.5.11-tuxcare.7", "purl": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-common@3.5.11-tuxcare.7" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:1e05a246-c451-5443-8722-56af0d59e24d", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-common@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:92f433d2-92fb-50bd-a51a-a2e4e252bcc2", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-common@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:f6589a43-b9a8-5403-ba85-87aecdef8c76", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-common@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:012c6833-ff34-5b89-a4de-dd5a304c97c3", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-common@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:7a81e7b4-9b57-5464-abc6-873489235cf8", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-common@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:f1900682-2d73-5477-b2d1-20f27681f477", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-common@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:4cfa6470-04bf-53f2-807f-477c3d97c3e0", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-common@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:5efa54ee-04dd-53d1-b432-b644d046b746", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-common@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:920bb847-48c7-5cdf-8369-eae6414ae938", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-common@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:61fad5c8-6eb9-53e7-bda8-b6eb56c9ec39", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-common@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:812a79ff-0dac-575a-98f0-4c10eeb1caed", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-common@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:f96ad40b-731d-5133-96e4-aac46f8cb011", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-common@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:4763cf2e-8544-566a-ba7f-a5d6b26048af", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-common@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:d07dde62-06a8-5123-a8a7-5cace2331b66", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-common@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:c5f0ab6d-b6f9-5389-9f04-a04759db146b", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-common@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:59dd5bdc-821a-5c4b-8e5f-e026de5f43b6", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-common@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:a48edf58-51a1-5253-9078-e7c391f1eb58", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-common@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:d4852642-3131-51cd-9d85-99c02d0eac2e", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-common@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:7183264e-1f23-5549-ada6-dc336d3d63aa", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-common@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:89a33170-c0d9-51c9-a255-498deb9eee63", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-common@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:62f1c2fd-d274-51c2-adb4-7d01713073a2", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-common@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:3e361ca0-4c50-5e44-95a1-1bafe6dbaa51", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-common@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:38d8032e-6f77-598d-b274-cbf0c9ed834e", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-common@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:a2c07d85-1220-5d28-ad6c-428438d064fb", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-common@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:b4509869-ead8-588a-b3f1-4626f69fb1c6", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-common@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:771839fd-23e9-5bf3-8cad-ae387e8df0c2", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.services.xkms:cxf-services-xkms-common 3.5.11-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-common@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:74752238-eb40-5133-919e-9b00fe678636", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-common@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:655f74c2-652b-5b96-855e-5b6d53e8e9c9", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.services.xkms:cxf-services-xkms-common 3.5.11-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-common@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:05608887-0a88-5be9-85a4-0e0162928eb6", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-common@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:584767d3-9f2b-5c8e-a13b-6701884710fb", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.services.xkms:cxf-services-xkms-common 3.5.11-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-common@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:bf2af0dd-6883-5620-8baa-d692b18d4623", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-common@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:ab1a3085-845c-5042-9046-0946a3eb5151", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.7 of org.apache.cxf.services.xkms:cxf-services-xkms-common." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-common@3.5.11-tuxcare.7" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.services.xkms/cxf-services-xkms-common@3.5.11-tuxcare.7" } ] }