{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:df52b4ee-9341-511a-a5e7-56a90befdb71", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-common@4.1.49.Final-tuxcare.1", "type": "library", "group": "io.netty", "name": "netty-common", "version": "4.1.49.Final-tuxcare.1", "purl": "pkg:maven/io.netty/netty-common@4.1.49.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:3f077748-91b3-53da-8108-85541777cc26", "id": "CVE-2021-21290", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-21290 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0615a3cd-e472-5927-ac33-4e12a38b2f1b", "id": "CVE-2021-21295", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-21295 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:30ac1445-6c4a-536d-aa0a-6bb16fea5150", "id": "CVE-2021-21409", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-21409 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0ba7a4a1-08b4-5f2e-9650-47971130b50a", "id": "CVE-2021-37136", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37136 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d4215e8b-a8a1-51c4-8438-d0f370a65b18", "id": "CVE-2021-37137", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37137 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0ba27b92-255b-5f11-8a46-7f61fd1569ac", "id": "CVE-2021-43797", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-43797 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:26a93ac0-6fd9-510b-812e-e04e1cd2317f", "id": "CVE-2022-24823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24823 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6193b846-2e7f-5bed-ae13-5fc18c86c40d", "id": "CVE-2022-41881", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-41881 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3abafdda-e5ae-5692-a6ba-82320f9c0826", "id": "CVE-2022-41915", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-41915 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c3214e58-268e-50f1-9e54-79adf3622f6a", "id": "CVE-2023-34462", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34462 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3b3aed7c-23fb-569d-a14a-8719eab15368", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:49aa8839-cc59-5b56-bfe6-f69ecea01a9e", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-common 4.1.49.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7d6d3865-a012-5585-8b4d-a1fad68178ae", "id": "CVE-2024-29025", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-29025 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:238eafa9-4f45-5c0c-8cc9-43a1670736f3", "id": "CVE-2024-47535", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-47535 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9e38e4ae-4f3c-5ba4-9bb9-161c31332b67", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3c16c7cc-d311-52ee-b599-8946799c5d1d", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ce541b27-ec21-5d33-8ef8-7d66f7bc5381", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3ca2894f-0e1e-51bd-9168-6bd1b6f45c7c", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:037d30bd-276a-5571-9ce2-acf244a7da91", "id": "CVE-2025-58057", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58057 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0e527d2d-f63f-55ec-8f73-f42f88166e05", "id": "CVE-2025-59419", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59419 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5f58aedf-beb1-50e5-8307-c385897d4b44", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4f60b0ce-4703-540d-bb73-35590c755d5e", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:783a4e22-6dc6-5ef4-badc-81a8d38c1585", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:97d344cf-fc11-5a22-9bd7-cb2bdc8195c8", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.49.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.49.Final-tuxcare.1" } ] }