{
  "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json",
  "bomFormat": "CycloneDX",
  "specVersion": "1.6",
  "serialNumber": "urn:uuid:0a4e9767-60a0-54db-a1b0-74fa016f7bb0",
  "version": 1,
  "metadata": {
    "tools": [
      {
        "name": "tuxcare-vex-generator",
        "version": "1.0.0"
      }
    ]
  },
  "components": [
    {
      "bom-ref": "pkg:maven/io.netty/netty-all@4.1.73.Final-tuxcare.1",
      "type": "library",
      "group": "io.netty",
      "name": "netty-all",
      "version": "4.1.73.Final-tuxcare.1",
      "purl": "pkg:maven/io.netty/netty-all@4.1.73.Final-tuxcare.1"
    }
  ],
  "vulnerabilities": [
    {
      "bom-ref": "urn:uuid:def9ad17-66d4-5047-9951-d8254e4a014f",
      "id": "CVE-2022-24823",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2022-24823 is fixed in version 4.1.73.Final-tuxcare.1 of io.netty:netty-all."
      },
      "affects": [
        {
          "ref": "pkg:maven/io.netty/netty-all@4.1.73.Final-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:b638b049-20f7-509d-a546-68abffae8ad2",
      "id": "CVE-2022-41881",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2022-41881 is fixed in version 4.1.73.Final-tuxcare.1 of io.netty:netty-all."
      },
      "affects": [
        {
          "ref": "pkg:maven/io.netty/netty-all@4.1.73.Final-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:cf5abd9c-e7ea-51a3-ac88-70db7997920b",
      "id": "CVE-2022-41915",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2022-41915 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-all."
      },
      "affects": [
        {
          "ref": "pkg:maven/io.netty/netty-all@4.1.73.Final-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:4485d647-c1a0-5364-892a-8251f6dfdbc5",
      "id": "CVE-2023-34462",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2023-34462 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-all."
      },
      "affects": [
        {
          "ref": "pkg:maven/io.netty/netty-all@4.1.73.Final-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:0e546f4d-7853-5b63-952e-8806f3fcaf6e",
      "id": "CVE-2023-44487",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.73.Final-tuxcare.1 of io.netty:netty-all."
      },
      "affects": [
        {
          "ref": "pkg:maven/io.netty/netty-all@4.1.73.Final-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:1d114ad2-4284-5070-b9a7-ee3ec8860ea3",
      "id": "CVE-2023-4586",
      "analysis": {
        "state": "false_positive",
        "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-all 4.1.73.Final-tuxcare.1."
      },
      "affects": [
        {
          "ref": "pkg:maven/io.netty/netty-all@4.1.73.Final-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:a575d6c6-037f-5190-ad84-a08eb24b9140",
      "id": "CVE-2024-29025",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2024-29025 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-all."
      },
      "affects": [
        {
          "ref": "pkg:maven/io.netty/netty-all@4.1.73.Final-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:2f838a68-d430-56e1-af02-5cfab758f988",
      "id": "CVE-2024-47535",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2024-47535 is fixed in version 4.1.73.Final-tuxcare.1 of io.netty:netty-all."
      },
      "affects": [
        {
          "ref": "pkg:maven/io.netty/netty-all@4.1.73.Final-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:6eb65e0e-f04d-5576-a42d-fafa1d87577b",
      "id": "CVE-2025-24970",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.73.Final-tuxcare.1 of io.netty:netty-all."
      },
      "affects": [
        {
          "ref": "pkg:maven/io.netty/netty-all@4.1.73.Final-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:bf704d57-e26a-5b7a-95c9-e7895360b321",
      "id": "CVE-2025-25193",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-25193 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-all."
      },
      "affects": [
        {
          "ref": "pkg:maven/io.netty/netty-all@4.1.73.Final-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:4f4e9990-8415-52b6-be27-d5fb7ddad243",
      "id": "CVE-2025-55163",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-55163 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-all."
      },
      "affects": [
        {
          "ref": "pkg:maven/io.netty/netty-all@4.1.73.Final-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:f1e29704-dff3-5608-adc2-ee3e1fbbbc77",
      "id": "CVE-2025-58056",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-58056 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-all."
      },
      "affects": [
        {
          "ref": "pkg:maven/io.netty/netty-all@4.1.73.Final-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:5d4cedd2-abd2-5967-8d55-d93248afcefb",
      "id": "CVE-2025-58057",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-58057 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-all."
      },
      "affects": [
        {
          "ref": "pkg:maven/io.netty/netty-all@4.1.73.Final-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:35c5895d-6d5c-5a06-bac5-580f9c0480dc",
      "id": "CVE-2025-59419",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.73.Final-tuxcare.1 of io.netty:netty-all."
      },
      "affects": [
        {
          "ref": "pkg:maven/io.netty/netty-all@4.1.73.Final-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:f9c37917-61b3-5a18-9272-f84d37c97bdd",
      "id": "CVE-2025-67735",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-67735 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-all."
      },
      "affects": [
        {
          "ref": "pkg:maven/io.netty/netty-all@4.1.73.Final-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:11466304-d1b5-572b-b422-ffdcbb9329c3",
      "id": "CVE-2026-33870",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-33870 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-all."
      },
      "affects": [
        {
          "ref": "pkg:maven/io.netty/netty-all@4.1.73.Final-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:118a22e3-900f-5e1a-980a-a5ce8101cb9c",
      "id": "CVE-2026-33871",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-33871 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-all."
      },
      "affects": [
        {
          "ref": "pkg:maven/io.netty/netty-all@4.1.73.Final-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:91ac0910-56e4-5509-9bb3-b01c668471b7",
      "id": "GHSA-xpw8-rcwv-8f8p",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-all."
      },
      "affects": [
        {
          "ref": "pkg:maven/io.netty/netty-all@4.1.73.Final-tuxcare.1"
        }
      ]
    }
  ],
  "dependencies": [
    {
      "ref": "pkg:maven/io.netty/netty-all@4.1.73.Final-tuxcare.1"
    }
  ]
}