{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:c64b3c11-f1ec-5e2b-b006-bfdb3d3dadbb", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.7", "type": "library", "group": "org.apache.cxf", "name": "cxf-tools-validator", "version": "3.5.11-tuxcare.7", "purl": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.7" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:fe4afbd3-baec-5daa-bbe0-f1c693c9d491", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:bc0eaac1-096c-5ac1-9596-9443c07429cf", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:5dea7ce0-8ba6-551f-9d4d-1b6074f1d090", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:101cbe1e-425e-58fc-a343-420c4f7e823a", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:65195c19-2029-54d6-acd1-583a65ff4549", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:43662e22-a979-5b5f-a05f-614345f1fd42", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:9427c8e8-5363-50ef-bc7e-faacf961a2eb", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:99605962-5329-5371-b53e-35284ac99a32", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:9f07947b-e49d-5d32-9190-62f63689e560", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:5a25257a-7387-53b3-99f2-c350eff7215a", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:bbb2a6c5-71ce-524e-b87c-6cde57383cb8", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:63e83f41-46e4-56c9-b88e-290fa351a8eb", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:125e97d9-45de-5238-9c53-adc509251536", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:1a211266-3416-5df7-8ffa-9018d14fb845", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:53a67684-e887-54f2-8067-3e5670f44cad", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:4562dc55-8966-5dad-bba5-d8af5d04b3d9", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:9077a23a-673a-57f5-ab5d-f00c02425b41", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:cd335022-55b4-52b6-b9f3-8475a140f6dd", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:1c11fa57-e501-5d60-9c51-1c20e8671bd1", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:77e3f759-ace9-5760-ae29-4075a55b1398", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:258a2ce1-bf0c-5b1d-8fea-589f29dd2c54", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:b853902c-204e-59ad-8577-176a7f0b1453", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:02afafd6-b5fc-5df2-b031-6e85ab1ae324", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:49c14c02-09aa-5e75-a422-2546fcdd1b91", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:18397b16-94ce-56a9-8de7-793cf1df422a", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:748145a6-d2c8-5d71-bdce-c2d9699f8720", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-tools-validator 3.5.11-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:cda5b7c5-0827-58ce-93b8-0f0ba05af177", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:9ca21be8-c753-51bf-8190-b9256d92a168", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf:cxf-tools-validator 3.5.11-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:009ae27d-6e6d-5a4d-9f87-366e49002c46", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:19cfbb84-ee41-5299-b742-4643fffed716", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-tools-validator 3.5.11-tuxcare.7." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:2c427bad-fef8-5aeb-8ce1-50b4cfa07bba", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.7" } ] }, { "bom-ref": "urn:uuid:fd373de9-e5a3-5f53-aac2-a7fbc19fc0e5", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.7 of org.apache.cxf:cxf-tools-validator." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.7" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-tools-validator@3.5.11-tuxcare.7" } ] }