{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:192c1fdb-340e-5f0c-8a99-a4d8c108887d", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-codec-haproxy@4.1.63.Final-tuxcare.3", "type": "library", "group": "io.netty", "name": "netty-codec-haproxy", "version": "4.1.63.Final-tuxcare.3", "purl": "pkg:maven/io.netty/netty-codec-haproxy@4.1.63.Final-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:9e90c773-9af1-5ec2-9795-9530591735d7", "id": "CVE-2021-37136", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37136 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-haproxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-haproxy@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8d53c93c-817f-5720-9e9c-bfcd49c22d46", "id": "CVE-2021-37137", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37137 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-haproxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-haproxy@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:637704ae-5c9c-5f60-b3d4-8182bc2b34a2", "id": "CVE-2021-43797", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-43797 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-haproxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-haproxy@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:676a8ee8-830d-5cc4-a152-3e5dbbb08a1c", "id": "CVE-2022-24823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24823 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-haproxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-haproxy@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:eabefc96-2d78-5d07-a68c-9d950320082f", "id": "CVE-2022-41881", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41881 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-haproxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-haproxy@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f33f89c4-3716-5792-9776-9c662acb09a4", "id": "CVE-2022-41915", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41915 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-haproxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-haproxy@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:78e73909-371c-54c9-8245-b302e313982b", "id": "CVE-2023-34462", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34462 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-haproxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-haproxy@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ebf7e9fd-fd28-57bd-bf5f-db7d6ef92517", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-haproxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-haproxy@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c9d6e8ff-d563-55ea-91bb-03200f34bcf3", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-codec-haproxy 4.1.63.Final-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-haproxy@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:63d3b501-1fc5-5799-9932-a1717e361779", "id": "CVE-2024-29025", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-29025 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-haproxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-haproxy@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:55a85acd-1b1a-5a24-8cde-bdbfcb25443d", "id": "CVE-2024-47535", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47535 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-haproxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-haproxy@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ca89b358-44f0-5adc-a834-6f4d6bd4115c", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-haproxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-haproxy@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4a0966a0-b50c-5b65-b4d0-825cea78d30b", "id": "CVE-2025-25193", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-25193 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-haproxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-haproxy@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4f9960e0-9268-5e23-bfae-e81a47b0321b", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-haproxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-haproxy@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b1406574-d8de-5395-9812-86a0bd09feda", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-haproxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-haproxy@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:170adb15-6c1e-5f1d-b1ab-443caf695d20", "id": "CVE-2025-58057", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58057 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-haproxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-haproxy@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:18ba867e-152e-5cd9-9342-aea2c45c7ae5", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-haproxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-haproxy@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:000c6f7e-01a0-5eaf-8a0d-3a3d62351396", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-haproxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-haproxy@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:810f5b2f-a4f0-5fc8-a74e-1661e88d7860", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-haproxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-haproxy@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:46e56444-0ffb-5137-b34e-e3ff578f1f07", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-haproxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-haproxy@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2acc5d92-fe46-56b0-997c-fdb99b5e049b", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-haproxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-haproxy@4.1.63.Final-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-codec-haproxy@4.1.63.Final-tuxcare.3" } ] }