{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:a66182f2-b1eb-51a3-9910-c7d5895344f5", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-buffer@4.1.112.Final-tuxcare.2", "type": "library", "group": "io.netty", "name": "netty-buffer", "version": "4.1.112.Final-tuxcare.2", "purl": "pkg:maven/io.netty/netty-buffer@4.1.112.Final-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:8b2b19bf-8fd3-5e02-bbda-d785432ebe4e", "id": "CVE-2024-47535", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-47535 affects version 4.1.112.Final-tuxcare.2 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.112.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0a152019-e4ea-57c3-aa6c-f46cc34a987e", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.112.Final-tuxcare.2 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.112.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:977ded4e-2b9b-59fd-b174-aac8da07f975", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.112.Final-tuxcare.2 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.112.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c14981a0-bb76-5514-943e-32a0d50b04b1", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.112.Final-tuxcare.2 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.112.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:13e07055-b666-52f7-945b-288b6dacedca", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.112.Final-tuxcare.2 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.112.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:856e1ab7-3e41-5873-bedb-63b6633988af", "id": "CVE-2025-58057", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58057 is fixed in version 4.1.112.Final-tuxcare.2 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.112.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0cb1af1f-545d-5c68-b21e-a7fb5c9a4fdc", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.112.Final-tuxcare.2 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.112.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:58dddcb2-8268-5803-bd0e-4e7520df757f", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.112.Final-tuxcare.2 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.112.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fc78a7cf-87ac-515d-a2bf-dbec03cb4c2c", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.112.Final-tuxcare.2 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.112.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9cad36fc-cdc5-50b1-a70a-dd8f05c3cef6", "id": "CVE-2026-33871", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-33871 is fixed in version 4.1.112.Final-tuxcare.2 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.112.Final-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.112.Final-tuxcare.2" } ] }