{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:94f02ed7-2916-5ec2-9893-13b635b69e3b", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-codec@4.1.93.Final-tuxcare.1", "type": "library", "group": "io.netty", "name": "netty-codec", "version": "4.1.93.Final-tuxcare.1", "purl": "pkg:maven/io.netty/netty-codec@4.1.93.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:1585706e-74b3-5ab1-8e10-e032ab5c4d73", "id": "CVE-2023-34462", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34462 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-codec." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:de70f4bf-7a8e-510a-a3d4-78010154ca23", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-codec." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f939ab9b-9333-5f3e-a3cb-ee79b82662c9", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-codec 4.1.93.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e8fa07a1-f9ea-5014-9b10-1ae35fab7304", "id": "CVE-2024-29025", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-29025 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-codec." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fc4059cf-d578-5373-b3f8-7e5ac0448ab8", "id": "CVE-2024-47535", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47535 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-codec." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bffb8d08-4620-5bde-bdd3-4e74d150638e", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-codec." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dd7b1021-caed-52d1-82f9-8be795caa381", "id": "CVE-2025-25193", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-25193 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-codec." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a21c6862-4a1f-5154-8894-8e1bc3a5299e", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-codec." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d2a66a0c-28d3-50d6-8acf-8e52032a7d9a", "id": "CVE-2025-58056", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58056 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-codec." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:caa855e2-3a61-5233-a8cc-a7a4f609692e", "id": "CVE-2025-58057", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58057 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-codec." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:89939d71-d237-5a81-af4a-a3e1a87ce6b3", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-codec." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e03534de-dd1d-5d97-8f88-1b363851d054", "id": "CVE-2025-67735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-67735 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-codec." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8be37cb4-da9f-525b-aefa-b818ba4031f4", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.93.Final-tuxcare.1 of io.netty:netty-codec." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:941f0dd7-8938-509a-952e-2801366d9e63", "id": "CVE-2026-33871", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-33871 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-codec." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:073a3ab8-8290-5253-b932-168166b5abd2", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.93.Final-tuxcare.1 of io.netty:netty-codec." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec@4.1.93.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-codec@4.1.93.Final-tuxcare.1" } ] }