{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:a3b7ca72-3b5f-5929-b3a5-7b2d58b127b8", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-codec-dns@4.1.63.Final-tuxcare.2", "type": "library", "group": "io.netty", "name": "netty-codec-dns", "version": "4.1.63.Final-tuxcare.2", "purl": "pkg:maven/io.netty/netty-codec-dns@4.1.63.Final-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:9a113f2f-cbcd-571c-92a0-a99a5a757885", "id": "CVE-2021-37136", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37136 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:df573bd1-c327-561b-8cb8-9fdb0c7ce20f", "id": "CVE-2021-37137", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37137 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5f62ff92-3711-56ec-8a38-b7895b60d2f2", "id": "CVE-2021-43797", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-43797 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2c7718b6-1509-5302-b401-1f9fc00f2446", "id": "CVE-2022-24823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24823 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:75b962fa-2206-5637-82ce-2a3a6ac0c868", "id": "CVE-2022-41881", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41881 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:70f8d69a-1835-59f3-a32a-edd539fa4732", "id": "CVE-2022-41915", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41915 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6df90736-4fdb-5282-aa3a-ad13cd0af6cb", "id": "CVE-2023-34462", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34462 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7785feb0-61f6-5aff-b861-2cf36deb8b21", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0c1d1a63-9bec-58c0-b79d-51a43db3036f", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-codec-dns 4.1.63.Final-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:48c21968-c4b0-550f-b74c-4966dc4c0cf9", "id": "CVE-2024-29025", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-29025 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ab5ae9d3-ab83-5413-b464-dfc28148d1e3", "id": "CVE-2024-47535", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47535 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2c77d18d-27ec-5a93-a6fd-9cbc5af2c515", "id": "CVE-2025-24970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24970 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:09f09617-3f27-5055-a350-a1a67f0d47ae", "id": "CVE-2025-25193", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-25193 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d93f2f32-4519-562b-9f9a-c8b9bf8e76b0", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6f72aed9-1560-500f-bd53-6ec37ceb9abe", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8c61fbb1-8737-56e0-9e75-79068439544c", "id": "CVE-2025-58057", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58057 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:dc186105-c7e7-5bc1-8143-d3cf073d7062", "id": "CVE-2025-59419", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59419 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7c1addaf-1ae2-5583-aacd-d0e34a184abe", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a863ce95-3b79-5f41-b62c-3defa2752272", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c92265de-6a13-519e-9c54-324e9293d1f9", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2aa4840b-6c94-5f75-8baa-5a434e32407f", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.63.Final-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.63.Final-tuxcare.2" } ] }