{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:9809a797-b9c3-5249-a0a0-72c46d9a0119", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.7", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-rs-sse", "version": "3.5.11-tuxcare.7", "purl": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.7" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:41204fe9-1ad6-5c4a-8918-71a1f672f264", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:09d9a0fa-5b1b-5ffd-ac96-f5f8043104d9", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:c8fd86ae-16bc-50b1-8f80-528b8dc4e18e", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:fcf6e23e-0e05-5e1a-b58a-3a8ff6861abd", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:9bab105f-a227-5f29-9689-820edcc93b9f", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:2fd1b0fd-7035-572f-9ea1-bb1f6fb3bb0d", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:eb9fc99f-d91b-58a9-a5d5-673aadaa4734", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:b8644afa-4f1d-5e8f-8a71-6e8b89a8d2f1", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:ffc41385-dd9f-5408-8d6e-4a3c0b564cbf", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:801aadca-6ed8-5b33-9888-f60f5134ad3b", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:a1f8e24c-1212-5b69-9b5c-f3f7f7358bd6", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:03c5c67d-41c9-58f1-9d22-f57e7e7b020f", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:81ed28bf-dd06-5c2f-ba72-706f244be6cd", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:3304f7d1-b638-5375-a89a-06ab16e7c344", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:1113c7b8-a324-5701-ab22-5c410da83f91", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:9687c076-c19d-5bf0-bf5f-8b1100fd9c88", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:f508c011-8df1-54ae-b793-c1f732c587d1", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:0b1b05c4-36aa-5101-ad3b-4225f3b15c4e", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:9bddd58e-341c-5c2c-8b81-2ce4b156fcdc", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:04b8528b-93dc-5f7b-acab-98f9703c4f85", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:3664ebdb-ff09-5497-8a3e-f8f9059c01ff", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:f8f19ce3-d3be-50bd-979d-84843ce2d782", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:c58b8b63-52c3-5764-a1ad-1c93140929db", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:22d40f8d-79d4-5fab-a8a7-63113c3845dc", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:50e44494-1c47-5bf2-b40d-e6417e30c8bf", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:919701bf-fe1f-50b2-b1d7-959b95ccf7f1", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-rs-sse 3.5.11-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:0571f015-d33f-5f7c-bf12-cbac80691c36", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:0ae810d5-f301-5a1d-9913-96ce827118f5", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-rt-rs-sse 3.5.11-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:eb93b5a9-0761-5f54-8169-c3afed69f45b", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:d87c5435-2f6a-58a2-8cf2-ae287c0626a1", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-rs-sse 3.5.11-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:b3097c8c-38ff-5edd-9c64-1b5dc3eb77c5", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:65ad2574-9760-596e-b604-fffdf5e329ef", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-rt-rs-sse." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.7" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-sse@3.5.11-tuxcare.7" } ] }