{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:011cb389-9ce5-5700-a041-356de4f8b536", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-codec-dns@4.1.52.Final-tuxcare.1", "type": "library", "group": "io.netty", "name": "netty-codec-dns", "version": "4.1.52.Final-tuxcare.1", "purl": "pkg:maven/io.netty/netty-codec-dns@4.1.52.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:151fa8ca-fb93-5a6a-a7e3-3c067c8d636f", "id": "CVE-2021-21290", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-21290 is fixed in version 4.1.52.Final-tuxcare.1 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.52.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:08cc5c76-ea67-5e5e-bdfb-d205f8efbb8b", "id": "CVE-2021-21295", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-21295 is fixed in version 4.1.52.Final-tuxcare.1 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.52.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:75a89d9c-53ad-58c5-b78d-bb3d270dec66", "id": "CVE-2021-21409", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-21409 is fixed in version 4.1.52.Final-tuxcare.1 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.52.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c0beb142-bc85-533c-8310-3378b8faaeed", "id": "CVE-2021-37136", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37136 is fixed in version 4.1.52.Final-tuxcare.1 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.52.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5248d7af-5db9-58fa-aa95-a427c27d9105", "id": "CVE-2021-37137", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37137 is fixed in version 4.1.52.Final-tuxcare.1 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.52.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6146e9bc-512b-564e-bd0b-06c2301c940c", "id": "CVE-2021-43797", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-43797 is fixed in version 4.1.52.Final-tuxcare.1 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.52.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6feac7a6-25cd-5bcd-8891-cc59169e8f01", "id": "CVE-2022-24823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24823 is fixed in version 4.1.52.Final-tuxcare.1 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.52.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4926bb62-2149-531b-b0f6-c1dd6e769abc", "id": "CVE-2022-41881", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41881 is fixed in version 4.1.52.Final-tuxcare.1 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.52.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dfada2da-aff1-5005-852b-c7033698961f", "id": "CVE-2023-34462", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-34462 affects version 4.1.52.Final-tuxcare.1 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.52.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:da286743-5bfc-5a69-8c94-a1546c50d8c3", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.52.Final-tuxcare.1 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.52.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4a728c45-da29-5881-a041-2a528c557115", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-codec-dns 4.1.52.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.52.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:806bb9b7-95d8-509c-aceb-b998b9b8f255", "id": "CVE-2024-29025", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-29025 is fixed in version 4.1.52.Final-tuxcare.1 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.52.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0096db1c-1026-522e-91c5-44b31d547589", "id": "CVE-2024-47535", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47535 is fixed in version 4.1.52.Final-tuxcare.1 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.52.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9c39b2c7-6675-5d5f-b13c-ffb1c1fccecd", "id": "CVE-2025-24970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24970 affects version 4.1.52.Final-tuxcare.1 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.52.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7b82d8de-51fc-5e0f-8971-460ebd569da1", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.52.Final-tuxcare.1 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.52.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:50cc5afe-b41d-55f4-bd65-76c5cf2ed766", "id": "CVE-2025-55163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55163 affects version 4.1.52.Final-tuxcare.1 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.52.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8875b5bf-e729-5867-abe7-d1385ce86bb1", "id": "CVE-2025-58056", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58056 is fixed in version 4.1.52.Final-tuxcare.1 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.52.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:39d2cde9-d1c0-53a2-98ac-895c476aca26", "id": "CVE-2025-58057", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58057 is fixed in version 4.1.52.Final-tuxcare.1 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.52.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2cd7bc8d-5191-565f-bac5-62bb3a9cabd8", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.52.Final-tuxcare.1 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.52.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f80f7f40-dbea-50b9-9657-b417e084b071", "id": "CVE-2025-67735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-67735 is fixed in version 4.1.52.Final-tuxcare.1 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.52.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fa14fda4-0c2e-55f3-8a88-2b120eeaa60b", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.52.Final-tuxcare.1 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.52.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3fc6419b-abbb-5fcb-9bf9-cd960b727b05", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.52.Final-tuxcare.1 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.52.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:aedad9ab-d649-5ed9-894f-e9f364a63acd", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "resolved", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p is fixed in version 4.1.52.Final-tuxcare.1 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.52.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.52.Final-tuxcare.1" } ] }