{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:27756ea3-5512-54e6-b942-fff2ec8a6fce", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-codec-dns@4.1.93.Final-tuxcare.1", "type": "library", "group": "io.netty", "name": "netty-codec-dns", "version": "4.1.93.Final-tuxcare.1", "purl": "pkg:maven/io.netty/netty-codec-dns@4.1.93.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:5f0249f6-4aff-5356-a240-d5f04d84b5dd", "id": "CVE-2023-34462", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34462 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:59491dc6-9c6d-555a-acd3-c388a430893f", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6860709f-ab91-59e4-8ba1-c14f492767c9", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-codec-dns 4.1.93.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:36a2ed2f-5a6e-5e2d-9fda-d3a74a679683", "id": "CVE-2024-29025", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-29025 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6694f059-88bb-5544-ab13-9a9078473480", "id": "CVE-2024-47535", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47535 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5b4001c5-8b88-5e38-a961-d79244a6c5a9", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0e63001d-d501-5bd8-8752-4624dfd821dd", "id": "CVE-2025-25193", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-25193 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dd11d40e-1110-540a-80d5-affb51826676", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ad21e2ff-0bf8-5492-93ce-a22859be507a", "id": "CVE-2025-58056", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58056 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d51829ed-0533-50c1-871f-b0e76dea24b5", "id": "CVE-2025-58057", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58057 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5dd57494-d4ca-5647-9fef-794b7c6d357e", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:83bde638-6066-54da-ac7c-5e3e085135e1", "id": "CVE-2025-67735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-67735 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dbc29f05-5336-5382-8b27-dedad72dd820", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.93.Final-tuxcare.1 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:05310c55-237c-52b7-8e75-b572ed9dc240", "id": "CVE-2026-33871", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-33871 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4a11d9d6-60bd-5da5-8b21-9a586ad6a650", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.93.Final-tuxcare.1 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.93.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.93.Final-tuxcare.1" } ] }