{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:883f565f-1d26-55d1-9a14-5b277f26205f", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.9-tuxcare.5", "type": "library", "group": "org.apache.cxf", "name": "cxf-java2wadl-plugin", "version": "3.5.9-tuxcare.5", "purl": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.9-tuxcare.5" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:d92b4a09-3d69-5169-b4a8-6d77d3653d19", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:6dbf6219-627e-5087-b73c-aaa04ebcf00d", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:232e7f6f-1602-5261-9934-81efb88d8e5f", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:2a06cb44-5076-5a9f-b7f7-341390362eef", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:e71d00c0-a839-565f-a51b-f8f25788de5a", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:56c46cef-4ad1-5914-b6d1-35834bd2f170", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:d3e83ae4-d1b9-5f11-a3c9-9ad67de1b84a", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:ed5848ed-df7c-54eb-b54e-e9da5a3c3bd4", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:38133029-56fb-5991-8436-c1bda708bafc", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:56e24876-3ad2-52b4-9d0b-468b72982be9", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:7949f69a-8b1a-5570-b2cd-66f3a542097b", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:eb235e58-f08f-5bb5-98a3-3b1cae236df3", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:f9e6d9e0-e6ba-59c5-90cd-0dc068e6aee9", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:4f803b9c-2bfc-5c91-a40b-4cb53d33dccc", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:1f57c820-0b15-502c-b2f5-7a0e122750e8", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:05fc7694-bca7-5b03-9e98-494c7a89ee89", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:7787ae87-6ba1-5db6-b13a-e4b0f1bab295", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf:cxf-java2wadl-plugin 3.5.9-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:d5a91f88-7b53-5eb6-98b2-939e8b1fbdb9", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:ca428a30-3002-5ccd-8961-30da8eb6e9a1", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:524e2cd6-8c09-5e77-ba9c-a06ab9af6a3a", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:a4f0f1c0-705c-540a-b4f7-d6229e2a9e6d", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:7359a83e-f94f-5f47-b8d3-03becc7f29d8", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:0a6ed065-bd01-5d43-8d89-c8bbdfe7818f", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:61dda98c-cec0-58ea-ab98-81540a57710a", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:6ac6f1c9-6c88-5983-b497-eaa2e2c1bdb5", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:abe87ce6-5bb5-5008-8730-46f52631a76a", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-java2wadl-plugin 3.5.9-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:3f307911-4460-5c98-b613-20f024b2d5b6", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:7665918d-195b-5f0e-9e48-ac54aafaf6c7", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:99452d75-2a61-56ca-8c02-4813e8cf61f0", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:a6cc6247-a362-5f4c-a4a7-9e4787c5ae0c", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-java2wadl-plugin 3.5.9-tuxcare.5." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:aff1510e-f5a7-5313-ac19-697dabf77b80", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:4757d563-ed88-5e96-9f48-489c3c2d15be", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:276c13fa-b3fe-5e01-9257-9a2739579971", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.9-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:8f4bce89-53ce-5ba7-a106-b7dca06d3851", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.5 of org.apache.cxf:cxf-java2wadl-plugin." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.9-tuxcare.5" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-java2wadl-plugin@3.5.9-tuxcare.5" } ] }