{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:116fed5f-999e-5ed8-82e8-b24659f49fbc", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-codec-socks@4.1.63.Final-tuxcare.2", "type": "library", "group": "io.netty", "name": "netty-codec-socks", "version": "4.1.63.Final-tuxcare.2", "purl": "pkg:maven/io.netty/netty-codec-socks@4.1.63.Final-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:833907a9-b342-5a2e-a561-a8f71135982a", "id": "CVE-2021-37136", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37136 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:275f0132-6f93-5fef-9ea7-cd8336937bbe", "id": "CVE-2021-37137", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37137 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:32d3795f-5e2e-59a2-bdf4-d7f91dcb8cef", "id": "CVE-2021-43797", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-43797 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c76a3d74-9798-5412-8fde-918d2556660f", "id": "CVE-2022-24823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24823 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:51c3f7c8-9797-54d4-b10b-1fdb6dfe2ce8", "id": "CVE-2022-41881", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41881 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9c106a68-c5dd-58be-88fa-4f1e169009db", "id": "CVE-2022-41915", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41915 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d2948442-2601-5782-b874-b2dcbec41aee", "id": "CVE-2023-34462", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34462 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:efc44587-1bbb-5b0e-b191-2b3aa9a3fa26", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a6dd52e0-3f68-54f4-b230-691adb5f762b", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-codec-socks 4.1.63.Final-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:786f930c-f718-5c8e-9aee-876b08ad794c", "id": "CVE-2024-29025", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-29025 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b8948e64-9484-5a2d-b92c-7e5f1730a688", "id": "CVE-2024-47535", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47535 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6a082935-5d58-5137-a9b0-ec13bc06e558", "id": "CVE-2025-24970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24970 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:87eec1bc-dfc7-5cc8-a9aa-48cfad051ca0", "id": "CVE-2025-25193", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-25193 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:df3256b0-64fb-5eae-9a1d-08b66a039733", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f632bb69-8655-5632-9904-ee59a75341cf", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:05bc25a7-3ee5-540e-85c6-974c866b4696", "id": "CVE-2025-58057", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58057 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:41d1956b-c902-5210-8071-796bc55ad25f", "id": "CVE-2025-59419", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59419 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6da1f463-4f8d-5802-831a-a71e2a2e4335", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5a581baf-7864-5e29-9d9f-c39f8785920e", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:06d839f4-5066-5cde-aebd-e6894753aa18", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cc960cc7-66dd-5299-a927-7936bcb5a876", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.63.Final-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.63.Final-tuxcare.2" } ] }