{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:e3a6a4bd-a649-5b3e-b343-d04ffd86c50a", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-buffer@4.1.112.Final-tuxcare.1", "type": "library", "group": "io.netty", "name": "netty-buffer", "version": "4.1.112.Final-tuxcare.1", "purl": "pkg:maven/io.netty/netty-buffer@4.1.112.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:42d403ff-3f04-520e-80f4-05bc53960b4e", "id": "CVE-2024-47535", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-47535 affects version 4.1.112.Final-tuxcare.1 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.112.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:932f0a64-2716-5145-b617-3e82f38b098d", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.112.Final-tuxcare.1 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.112.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a7defab7-d2f0-5a49-87a7-d7e671dde2b3", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.112.Final-tuxcare.1 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.112.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:af6cfe8e-7543-5708-b767-43da8d46e746", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.112.Final-tuxcare.1 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.112.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:35c95840-ec10-530d-9a35-f277c9f1a4bf", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.112.Final-tuxcare.1 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.112.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:51c62cd6-8057-5979-bdfb-68434547d7f7", "id": "CVE-2025-58057", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58057 is fixed in version 4.1.112.Final-tuxcare.1 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.112.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c5bab057-e23f-5941-9d04-018cf6c636fb", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.112.Final-tuxcare.1 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.112.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:625720e1-d3b3-5c93-9c17-78e1140d664d", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.112.Final-tuxcare.1 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.112.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6c880ab6-cac5-55cf-99a2-87d6078dea3b", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.112.Final-tuxcare.1 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.112.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:aa1e3e8e-3b5f-5313-8802-179878c0c0f5", "id": "CVE-2026-33871", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-33871 is fixed in version 4.1.112.Final-tuxcare.1 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.112.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.112.Final-tuxcare.1" } ] }