{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:7b0dd07e-d5c8-5e9c-9def-8d646fe4e8c0", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-common@4.1.63.Final-tuxcare.2", "type": "library", "group": "io.netty", "name": "netty-common", "version": "4.1.63.Final-tuxcare.2", "purl": "pkg:maven/io.netty/netty-common@4.1.63.Final-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:e4c35cfc-5733-52dd-ab13-e69fbfe18ff0", "id": "CVE-2021-37136", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37136 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:19b516db-52c6-5ea3-a3d9-7804958b1c12", "id": "CVE-2021-37137", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37137 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ce483eb4-b654-5a7d-9905-9d9a30b4d6b7", "id": "CVE-2021-43797", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-43797 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fd25c827-f355-51bc-9b7d-641ed5fa5a5a", "id": "CVE-2022-24823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24823 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ecb857c7-acea-5d97-90b2-711c790903f3", "id": "CVE-2022-41881", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41881 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:53d7a5ce-c3d4-5702-9a87-972d2d7b8e91", "id": "CVE-2022-41915", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41915 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9879f074-a86f-51e0-a4cd-b6bdbbd6bb5d", "id": "CVE-2023-34462", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34462 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b327909a-e00e-5999-b57e-e98adf2fa830", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cf8cb620-0215-548a-8e2b-d3c3e21404a2", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-common 4.1.63.Final-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5116ed5f-1f85-5574-870e-0a642feca710", "id": "CVE-2024-29025", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-29025 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:95284524-a8c4-5609-b3ab-cf6c15b250d6", "id": "CVE-2024-47535", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47535 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4b5b0c5d-fa65-5f2d-aba1-1c684b15dc19", "id": "CVE-2025-24970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24970 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:98dcab8c-5eed-55bd-bc32-00b65491a4e9", "id": "CVE-2025-25193", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-25193 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:878ea7e8-83c5-587d-bf8e-83eae0b913e6", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4a04668e-4a7a-5303-9c4c-f97f39be214a", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3cdab392-dfd0-5e0b-9b28-e3186e586d46", "id": "CVE-2025-58057", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58057 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:de65fd5b-c416-5dd3-9945-1358441a118c", "id": "CVE-2025-59419", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59419 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:de488584-09cb-57ae-9f7d-ed3f82723f55", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0a655bea-33df-5cb5-ae6a-afb280e8be48", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:96b03d5a-01c3-5c1c-9730-a7dd073a57e1", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:903b89d5-f0fa-5daa-80a0-7877839d936f", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.63.Final-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.63.Final-tuxcare.2" } ] }