{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:72b41152-5eb3-5d58-b845-6faba863edc2", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.60.Final-tuxcare.1", "type": "library", "group": "io.netty", "name": "netty-handler-proxy", "version": "4.1.60.Final-tuxcare.1", "purl": "pkg:maven/io.netty/netty-handler-proxy@4.1.60.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:beae48ce-800a-5cdf-8378-8ef4f8adeadc", "id": "CVE-2021-21409", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-21409 is fixed in version 4.1.60.Final-tuxcare.1 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.60.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8f342080-da4e-5b17-a3c0-894adeee6cec", "id": "CVE-2021-37136", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37136 is fixed in version 4.1.60.Final-tuxcare.1 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.60.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7805280d-b5fe-531f-b8f8-d787d2314396", "id": "CVE-2021-37137", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37137 is fixed in version 4.1.60.Final-tuxcare.1 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.60.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9578acef-10cc-5888-afb5-c18f0de2fd28", "id": "CVE-2021-43797", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-43797 is fixed in version 4.1.60.Final-tuxcare.1 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.60.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d605e8e0-b5d9-52e6-95cf-66ac85472798", "id": "CVE-2022-24823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24823 is fixed in version 4.1.60.Final-tuxcare.1 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.60.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d537769d-c57f-5689-980b-9f5c2cbef51b", "id": "CVE-2022-41881", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41881 is fixed in version 4.1.60.Final-tuxcare.1 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.60.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:391d1238-e047-5405-b20f-74e569afed81", "id": "CVE-2023-34462", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34462 is fixed in version 4.1.60.Final-tuxcare.1 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.60.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:539e3970-62d0-5e85-9815-076074267fc4", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 4.1.60.Final-tuxcare.1 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.60.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1365e83c-e022-533a-97e4-46ffa04e432a", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-handler-proxy 4.1.60.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.60.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dad270da-537c-5a42-8529-d05de8d6c257", "id": "CVE-2024-29025", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-29025 is fixed in version 4.1.60.Final-tuxcare.1 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.60.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cbb4eec5-e87a-59e8-abc3-e1ac2ccd614a", "id": "CVE-2024-47535", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47535 is fixed in version 4.1.60.Final-tuxcare.1 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.60.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8bc9ad62-0f7c-5d87-aa6b-4ec049adfc96", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.60.Final-tuxcare.1 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.60.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f7c246bd-0c0b-5cc5-a969-43442c006e45", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.60.Final-tuxcare.1 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.60.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ac4b6670-7e07-5c33-b6a7-9808dae95a8d", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.60.Final-tuxcare.1 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.60.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:83d2234d-6bad-5f39-8d10-59afc5bd2d9e", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.60.Final-tuxcare.1 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.60.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:842881d3-59c6-5170-b843-75842be5323e", "id": "CVE-2025-58057", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58057 affects version 4.1.60.Final-tuxcare.1 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.60.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fe6c815f-4898-5e5b-841e-e93ee5bf619d", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.60.Final-tuxcare.1 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.60.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:04d23e7f-3da5-5e2f-8679-d49e23d0ff72", "id": "CVE-2025-67735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-67735 is fixed in version 4.1.60.Final-tuxcare.1 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.60.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:13ed7b2c-41b9-5530-aae7-165a8ef1e3ea", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.60.Final-tuxcare.1 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.60.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bacb3d65-71f1-5acc-b1db-1a00367a5fd3", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.60.Final-tuxcare.1 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.60.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:eb2d1ac5-ff0e-52ff-ba0c-0e972a0898a2", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "resolved", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p is fixed in version 4.1.60.Final-tuxcare.1 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.60.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.60.Final-tuxcare.1" } ] }