{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:a1c3dd2e-8a6f-55d8-8dfd-1dfcc7b1cae3", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-codec-redis@4.1.93.Final-tuxcare.1", "type": "library", "group": "io.netty", "name": "netty-codec-redis", "version": "4.1.93.Final-tuxcare.1", "purl": "pkg:maven/io.netty/netty-codec-redis@4.1.93.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:6466f02d-36c3-520c-b5da-df9008e46aed", "id": "CVE-2023-34462", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34462 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-codec-redis." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-redis@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ae33f67f-1a5e-5a73-81b2-c964dba21054", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-codec-redis." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-redis@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:820de786-a4a7-5989-a98d-26f461485e79", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-codec-redis 4.1.93.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-redis@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:77fd0b0e-d04d-5be8-a94c-e98b1397c034", "id": "CVE-2024-29025", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-29025 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-codec-redis." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-redis@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:92eabd5c-a422-56b7-9578-1bc95eabe632", "id": "CVE-2024-47535", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47535 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-codec-redis." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-redis@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4caeea82-2574-5328-a236-13f22bb4d45a", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-codec-redis." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-redis@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:170867c9-a450-5971-9fca-6bd69ae34292", "id": "CVE-2025-25193", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-25193 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-codec-redis." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-redis@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:eeb1b632-2f6f-5901-8b41-9811c4ca4101", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-codec-redis." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-redis@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d93868b6-5c1f-5b16-bd71-bd75b0913e22", "id": "CVE-2025-58056", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58056 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-codec-redis." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-redis@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:25caf4d6-91d6-577c-ac54-5857e3bf5e18", "id": "CVE-2025-58057", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58057 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-codec-redis." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-redis@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:79d3ff43-6bd2-5205-ba58-8b5f470be7fa", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-codec-redis." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-redis@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:097a2ed1-cdb7-56a1-b1c5-2041a43bc7f4", "id": "CVE-2025-67735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-67735 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-codec-redis." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-redis@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b27ac61e-fc0d-5c7a-8d83-d71883dd751b", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.93.Final-tuxcare.1 of io.netty:netty-codec-redis." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-redis@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:62f3bdfa-c880-507f-bdfe-9d8d3f6a6597", "id": "CVE-2026-33871", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-33871 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-codec-redis." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-redis@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5bda98ff-2b81-52c7-8a1c-af884e193819", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.93.Final-tuxcare.1 of io.netty:netty-codec-redis." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-redis@4.1.93.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-codec-redis@4.1.93.Final-tuxcare.1" } ] }