{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:30f3e9fa-be70-5144-aab6-e4a5b9734d9f", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-common@4.1.52.Final-tuxcare.1", "type": "library", "group": "io.netty", "name": "netty-common", "version": "4.1.52.Final-tuxcare.1", "purl": "pkg:maven/io.netty/netty-common@4.1.52.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:cbc656f4-9a2a-5ee1-b4b8-1c8e9747ab06", "id": "CVE-2021-21290", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-21290 is fixed in version 4.1.52.Final-tuxcare.1 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.52.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:416ef02e-6c8d-5653-9a08-53462e2fa5dd", "id": "CVE-2021-21295", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-21295 is fixed in version 4.1.52.Final-tuxcare.1 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.52.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c95dedf7-5adc-5665-9820-b7ee4bfe54c0", "id": "CVE-2021-21409", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-21409 is fixed in version 4.1.52.Final-tuxcare.1 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.52.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:253af5ae-058a-51b5-bd0c-2ab6e594ea31", "id": "CVE-2021-37136", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37136 is fixed in version 4.1.52.Final-tuxcare.1 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.52.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c2e7519c-8e15-5778-9f4c-3e27b9fa90be", "id": "CVE-2021-37137", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37137 is fixed in version 4.1.52.Final-tuxcare.1 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.52.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4c9d0836-a559-5471-8958-e7c0e1bfe27b", "id": "CVE-2021-43797", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-43797 is fixed in version 4.1.52.Final-tuxcare.1 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.52.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ba151ef8-0058-54f4-9f85-e4c91621a519", "id": "CVE-2022-24823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24823 is fixed in version 4.1.52.Final-tuxcare.1 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.52.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4dc2c8f5-6fc7-551b-bb56-e906d18a7f4b", "id": "CVE-2022-41881", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41881 is fixed in version 4.1.52.Final-tuxcare.1 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.52.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a2658ced-40be-5017-9c48-6c4112bc52ad", "id": "CVE-2023-34462", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-34462 affects version 4.1.52.Final-tuxcare.1 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.52.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4f45c678-2db4-544c-bda7-0ccb3cd00b44", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.52.Final-tuxcare.1 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.52.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:823d67bc-2c43-532f-8404-5600365aebd3", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-common 4.1.52.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.52.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5742b1c5-cabe-519c-acc2-f570a541a963", "id": "CVE-2024-29025", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-29025 is fixed in version 4.1.52.Final-tuxcare.1 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.52.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4a78325a-91d2-5d70-b7d1-2eef4c337925", "id": "CVE-2024-47535", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47535 is fixed in version 4.1.52.Final-tuxcare.1 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.52.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a11b6212-2da4-5058-9800-58757de3422d", "id": "CVE-2025-24970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24970 affects version 4.1.52.Final-tuxcare.1 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.52.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fcac8d03-6380-5f2d-9677-5195a9863eb7", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.52.Final-tuxcare.1 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.52.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9861ee59-7835-5780-a9e8-b225616c344d", "id": "CVE-2025-55163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55163 affects version 4.1.52.Final-tuxcare.1 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.52.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:89f78e2b-31bb-5627-ae77-a40eaa8e9782", "id": "CVE-2025-58056", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58056 is fixed in version 4.1.52.Final-tuxcare.1 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.52.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:36e596b4-84f5-57e2-8ed8-6e071248a2c0", "id": "CVE-2025-58057", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58057 is fixed in version 4.1.52.Final-tuxcare.1 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.52.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4efa27af-fb8f-5be1-b90f-36b881ff1e31", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.52.Final-tuxcare.1 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.52.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:613ab725-9a10-58cd-8709-d3a8a165cd7d", "id": "CVE-2025-67735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-67735 is fixed in version 4.1.52.Final-tuxcare.1 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.52.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1668a2a9-8880-5a10-878b-dce3c131af24", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.52.Final-tuxcare.1 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.52.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:33615128-499b-520a-80dc-fb7d703a3731", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.52.Final-tuxcare.1 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.52.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:06495326-8634-53f1-8b6b-88a93758cf2d", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "resolved", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p is fixed in version 4.1.52.Final-tuxcare.1 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.52.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.52.Final-tuxcare.1" } ] }