{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:d733a3d5-7e42-5a35-a6b8-4fe54cc4a748", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-codec-socks@4.1.63.Final-tuxcare.1", "type": "library", "group": "io.netty", "name": "netty-codec-socks", "version": "4.1.63.Final-tuxcare.1", "purl": "pkg:maven/io.netty/netty-codec-socks@4.1.63.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:04d7ec02-5c5b-5232-be2c-0cf3c099be37", "id": "CVE-2021-37136", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37136 is fixed in version 4.1.63.Final-tuxcare.1 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bee2ff41-0168-578a-a9eb-49f8f4aa8324", "id": "CVE-2021-37137", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-37137 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5c2bc2f6-5c38-52c0-98b6-9af2137dae6e", "id": "CVE-2021-43797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-43797 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b0215760-3665-5ab1-be85-fae52000328e", "id": "CVE-2022-24823", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-24823 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:eb19b11f-7a9f-5681-9968-b6498586043e", "id": "CVE-2022-41881", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-41881 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3bdd6051-a5fb-5942-9555-80b15fdf9f57", "id": "CVE-2022-41915", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-41915 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1c3f3102-84ad-58e5-80d1-ec6ae18b3d34", "id": "CVE-2023-34462", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-34462 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5dbcc4e7-a427-52d6-b74f-c22ba68779e1", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0f32a9b2-a5bc-5349-8f10-3790d696df69", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-codec-socks 4.1.63.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:321a10b6-1dc2-5da0-b43c-0e0644d4df06", "id": "CVE-2024-29025", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-29025 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4ddd8ab9-24de-50a5-b750-2fd123e59585", "id": "CVE-2024-47535", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-47535 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4a66d3f0-84b9-5aa0-9995-3ce2a6a8c75f", "id": "CVE-2025-24970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24970 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c6d246a6-5442-5763-b2f4-5f1f06a0f3f3", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2b1e501d-84ad-53ed-bab2-08ad814f44be", "id": "CVE-2025-55163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55163 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3c47044e-6021-546e-9356-ff30aa371d45", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1d8aa478-2f1b-5483-a7c1-73557e7ba830", "id": "CVE-2025-58057", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58057 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a5cf9214-9daf-5f95-8550-183f0bd80731", "id": "CVE-2025-59419", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59419 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:461ac1ea-cbbf-54f4-9f8c-bca37c23995a", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:63007f73-c3dc-5825-9e51-a2fd3ac182e3", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:835547ef-4d23-5b46-aa65-9c2ffd8a5d16", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:31fbb2c9-68bd-5c8f-a85d-3d3001e6c564", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.63.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.63.Final-tuxcare.1" } ] }