{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:25a374a7-776f-5452-997e-5132478691fe", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-bom@4.1.112.Final-tuxcare.2", "type": "library", "group": "io.netty", "name": "netty-bom", "version": "4.1.112.Final-tuxcare.2", "purl": "pkg:maven/io.netty/netty-bom@4.1.112.Final-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:b06acc6e-0c1b-55d6-95c7-bbea0a721d31", "id": "CVE-2024-47535", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-47535 affects version 4.1.112.Final-tuxcare.2 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.112.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:36c5bfdb-0006-5b03-83b8-09bdcee902f4", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.112.Final-tuxcare.2 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.112.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e02035c7-25fe-5730-b2ad-7eb751788dd8", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.112.Final-tuxcare.2 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.112.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:31356cdf-e63a-5bd4-84b6-141a5af81efc", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.112.Final-tuxcare.2 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.112.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:038dd735-82a6-5314-a25b-a4a34912b8d5", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.112.Final-tuxcare.2 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.112.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:52c58700-ff85-5066-a451-64e6727b8329", "id": "CVE-2025-58057", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58057 is fixed in version 4.1.112.Final-tuxcare.2 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.112.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f8b5652e-4887-5ec3-a29f-9d11f2aee4dd", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.112.Final-tuxcare.2 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.112.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b45fe0a5-88d7-56d1-8ace-4f378631491b", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.112.Final-tuxcare.2 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.112.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cbcbbdae-fae3-5114-84a8-fa45379079db", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.112.Final-tuxcare.2 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.112.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d3fb6c16-f68b-5198-8f46-f53c93650ede", "id": "CVE-2026-33871", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-33871 is fixed in version 4.1.112.Final-tuxcare.2 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.112.Final-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.112.Final-tuxcare.2" } ] }