{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:9907d722-7119-5768-a875-d11cd5606e2a", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-codec-redis@4.1.49.Final-tuxcare.1", "type": "library", "group": "io.netty", "name": "netty-codec-redis", "version": "4.1.49.Final-tuxcare.1", "purl": "pkg:maven/io.netty/netty-codec-redis@4.1.49.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:dc9fd9ef-9f56-5cec-8ec6-0157fe5bcf40", "id": "CVE-2021-21290", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-21290 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-redis." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-redis@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:45a09178-57ea-5c1c-bfe6-c97a83eacef1", "id": "CVE-2021-21295", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-21295 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-redis." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-redis@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d132dc53-11be-5d9f-a4ea-8ff5c82c5275", "id": "CVE-2021-21409", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-21409 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-redis." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-redis@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9009b358-3430-5c30-8cca-f5a17f5247aa", "id": "CVE-2021-37136", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37136 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-redis." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-redis@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a4555f98-dc47-55a8-be3e-ffe49798b63c", "id": "CVE-2021-37137", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37137 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-redis." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-redis@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2d9dacd7-17ef-5191-896a-4f6bc67c5376", "id": "CVE-2021-43797", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-43797 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-redis." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-redis@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:faabfdf9-c52b-5c1d-804d-437115bbc02c", "id": "CVE-2022-24823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24823 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-redis." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-redis@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e59b3c72-2824-57a1-92de-9fd0592d3884", "id": "CVE-2022-41881", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-41881 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-redis." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-redis@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:16b4e97e-3b1e-537c-ad03-8249f76822f5", "id": "CVE-2022-41915", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-41915 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-redis." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-redis@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:85e5929e-1e67-5f31-8719-575f29a4a487", "id": "CVE-2023-34462", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34462 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-redis." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-redis@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:41541372-0afa-5eb1-9fc9-0038a53ed565", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-redis." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-redis@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:189db1da-770c-5b33-a672-07298e6138ea", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-codec-redis 4.1.49.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-redis@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f445dc40-f91e-56e2-b4a0-a1e52ca37b62", "id": "CVE-2024-29025", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-29025 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-redis." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-redis@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0dc70ff1-4866-56c7-a6db-5449f55722c8", "id": "CVE-2024-47535", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-47535 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-redis." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-redis@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bb94c3ad-62b9-5239-99fb-41d323b72007", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-redis." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-redis@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8277f62a-e410-5b0e-9da7-87d4537335f3", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-redis." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-redis@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e1839461-2876-5d3b-9f5a-8850852b8f85", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-redis." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-redis@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9b3be63e-409b-5962-b59a-934f377624ac", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-redis." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-redis@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:61b74d73-4c07-5f56-b325-05908a11f710", "id": "CVE-2025-58057", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58057 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-redis." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-redis@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d5926409-751f-5fe1-abad-22b83da6ad9b", "id": "CVE-2025-59419", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59419 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-redis." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-redis@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:50c21b7d-b4cd-50b6-8ba0-8f9b5cafbc07", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-redis." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-redis@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:56c11cb9-3421-510c-92c4-d4cf38b35a1d", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-redis." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-redis@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fcad3f70-7908-59f7-96df-18c287ff6895", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-redis." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-redis@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:64cc5e0d-ce3c-5c6b-9323-2f19aca83422", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-redis." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-redis@4.1.49.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-codec-redis@4.1.49.Final-tuxcare.1" } ] }