{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:0475e3d0-9ade-509e-a616-b4d807d95b7d", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-dev-tools@4.1.115.Final-tuxcare.3", "type": "library", "group": "io.netty", "name": "netty-dev-tools", "version": "4.1.115.Final-tuxcare.3", "purl": "pkg:maven/io.netty/netty-dev-tools@4.1.115.Final-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:1f6e0d90-3b66-550b-9c2b-86b7b339d07a", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.115.Final-tuxcare.3 of io.netty:netty-dev-tools." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-dev-tools@4.1.115.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a1f8a303-3648-5651-be92-b11cf6fe50b5", "id": "CVE-2025-25193", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-25193 is fixed in version 4.1.115.Final-tuxcare.3 of io.netty:netty-dev-tools." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-dev-tools@4.1.115.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:05f35f89-1ca5-59e1-aafd-922bb95835e9", "id": "CVE-2025-55163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55163 affects version 4.1.115.Final-tuxcare.3 of io.netty:netty-dev-tools." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-dev-tools@4.1.115.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:50110f95-fdc6-5d47-bd99-59f9ac7c2ff6", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.115.Final-tuxcare.3 of io.netty:netty-dev-tools." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-dev-tools@4.1.115.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ba36ec2c-be52-52f4-9ef3-49fdceebcbb9", "id": "CVE-2025-58057", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58057 affects version 4.1.115.Final-tuxcare.3 of io.netty:netty-dev-tools." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-dev-tools@4.1.115.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7847add2-aabf-5178-8e36-ec16d3b7e128", "id": "CVE-2025-59419", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59419 affects version 4.1.115.Final-tuxcare.3 of io.netty:netty-dev-tools." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-dev-tools@4.1.115.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b7f0d486-91fa-575f-9db7-0e85eca19c0f", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.115.Final-tuxcare.3 of io.netty:netty-dev-tools." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-dev-tools@4.1.115.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c6f73cf4-b9f6-563b-9cdd-8a076a444762", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.115.Final-tuxcare.3 of io.netty:netty-dev-tools." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-dev-tools@4.1.115.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c1c235db-f8b8-566f-96a7-138c05864d66", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.115.Final-tuxcare.3 of io.netty:netty-dev-tools." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-dev-tools@4.1.115.Final-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-dev-tools@4.1.115.Final-tuxcare.3" } ] }