{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:93522f49-dc65-506d-a538-b83d4d3b2f5f", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-dev-tools@4.1.63.Final-tuxcare.3", "type": "library", "group": "io.netty", "name": "netty-dev-tools", "version": "4.1.63.Final-tuxcare.3", "purl": "pkg:maven/io.netty/netty-dev-tools@4.1.63.Final-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:2bb724cb-3702-5d6d-a848-82536d5cf08e", "id": "CVE-2021-37136", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37136 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-dev-tools." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-dev-tools@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:667f0c63-0b97-5a77-ab2d-fc5fc9099697", "id": "CVE-2021-37137", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37137 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-dev-tools." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-dev-tools@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:88bfca56-345c-58ea-8dce-f9d218ab4400", "id": "CVE-2021-43797", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-43797 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-dev-tools." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-dev-tools@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9ab91ca9-6dfc-5329-afd1-eaf0496b0790", "id": "CVE-2022-24823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24823 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-dev-tools." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-dev-tools@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0def4dea-76e7-502c-8edb-857bfc907e74", "id": "CVE-2022-41881", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41881 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-dev-tools." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-dev-tools@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:075ca706-acec-58a8-b15c-4dae6de36599", "id": "CVE-2022-41915", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41915 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-dev-tools." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-dev-tools@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:efe48bea-254f-5782-ae11-613d150c02cf", "id": "CVE-2023-34462", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34462 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-dev-tools." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-dev-tools@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a49e7007-5b43-570f-ad8c-e9da16286783", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-dev-tools." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-dev-tools@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2c46ab5b-f25d-5d0c-9170-105b2bb9c0c2", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-dev-tools 4.1.63.Final-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-dev-tools@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:31959ac7-81d4-5bd8-947d-ef926b3f7461", "id": "CVE-2024-29025", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-29025 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-dev-tools." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-dev-tools@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:631a1887-b1b5-5e4e-aa72-ca867885f9d9", "id": "CVE-2024-47535", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47535 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-dev-tools." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-dev-tools@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c7ff3245-86f5-53bb-826e-7ec5de23819b", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-dev-tools." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-dev-tools@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fa8cfa4d-80e7-5825-9d3e-939b485b95b2", "id": "CVE-2025-25193", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-25193 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-dev-tools." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-dev-tools@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e61e7ac9-41d9-50eb-9f30-db5e85f6baf8", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-dev-tools." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-dev-tools@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a2f2860f-79e6-5564-8ddf-ec764368572d", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-dev-tools." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-dev-tools@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c567ab90-ff93-5045-a9da-d933f6e5f42a", "id": "CVE-2025-58057", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58057 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-dev-tools." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-dev-tools@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:96a6ee97-0797-5602-80c2-82048c380653", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-dev-tools." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-dev-tools@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e488fa81-ab56-5723-9085-6ba40bf3eabe", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-dev-tools." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-dev-tools@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:491ff285-2400-575b-b8e0-65f1803fbf80", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-dev-tools." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-dev-tools@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:07754ffe-738b-5b3d-a4ad-8407cf3f443d", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-dev-tools." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-dev-tools@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0723cf7a-69da-5bff-82e1-c460b70ab11f", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-dev-tools." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-dev-tools@4.1.63.Final-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-dev-tools@4.1.63.Final-tuxcare.3" } ] }