{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:7b41247c-87bf-5da4-83a4-6e6bb46531bf", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-all@4.1.112.Final-tuxcare.1", "type": "library", "group": "io.netty", "name": "netty-all", "version": "4.1.112.Final-tuxcare.1", "purl": "pkg:maven/io.netty/netty-all@4.1.112.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:99f7ab9c-501d-59e0-903a-876a0bb2e4ba", "id": "CVE-2024-47535", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-47535 affects version 4.1.112.Final-tuxcare.1 of io.netty:netty-all." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-all@4.1.112.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f68977cd-d877-57fe-8532-fde2e500601d", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.112.Final-tuxcare.1 of io.netty:netty-all." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-all@4.1.112.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:592ad86e-95f6-54d9-85d5-b8a939583faf", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.112.Final-tuxcare.1 of io.netty:netty-all." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-all@4.1.112.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6fb24c6b-b98b-5cd8-a0a2-b635d3b538dd", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.112.Final-tuxcare.1 of io.netty:netty-all." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-all@4.1.112.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bb165f70-4d7b-5985-8e5a-b8cc23252bb2", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.112.Final-tuxcare.1 of io.netty:netty-all." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-all@4.1.112.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:550e2807-ed12-5c71-8358-26b74eda6869", "id": "CVE-2025-58057", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58057 is fixed in version 4.1.112.Final-tuxcare.1 of io.netty:netty-all." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-all@4.1.112.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e0d321c5-9769-56d8-853e-78950fd22fb5", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.112.Final-tuxcare.1 of io.netty:netty-all." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-all@4.1.112.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6e06e3bb-b863-5dd5-8d21-170ca22c0941", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.112.Final-tuxcare.1 of io.netty:netty-all." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-all@4.1.112.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7478c395-17d2-5a51-b815-682ecb2930bd", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.112.Final-tuxcare.1 of io.netty:netty-all." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-all@4.1.112.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:265fa37b-294b-52b8-94d5-68d8d5637d92", "id": "CVE-2026-33871", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-33871 is fixed in version 4.1.112.Final-tuxcare.1 of io.netty:netty-all." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-all@4.1.112.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-all@4.1.112.Final-tuxcare.1" } ] }