{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:9a5a51f4-96cf-5425-82fa-f1621f9ed98c", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.63.Final-tuxcare.2", "type": "library", "group": "io.netty", "name": "netty-handler-proxy", "version": "4.1.63.Final-tuxcare.2", "purl": "pkg:maven/io.netty/netty-handler-proxy@4.1.63.Final-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:836a43f7-86ef-5efc-8cd0-2937bd973b47", "id": "CVE-2021-37136", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37136 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f47936db-fae8-5742-a9e6-b2b50d2638f0", "id": "CVE-2021-37137", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37137 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f7f1d50f-10d2-5d72-9776-721bf9d6a908", "id": "CVE-2021-43797", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-43797 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a85a6409-e0ad-5fd4-8474-02a045a2c90b", "id": "CVE-2022-24823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24823 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:94ee2f11-03fb-525e-8af7-573fa560020f", "id": "CVE-2022-41881", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41881 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3505a2c2-c5a7-550f-b3da-621c1a21bcfe", "id": "CVE-2022-41915", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41915 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:91a7b671-026f-5a4f-9ca4-e8d8ab856615", "id": "CVE-2023-34462", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34462 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7c958f9f-91aa-589c-af8c-b7238cdf7394", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e8b9b7aa-d172-5fff-b3be-c7c58c7c092b", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-handler-proxy 4.1.63.Final-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fa270cac-dfde-589a-84dc-dbe36999bbbe", "id": "CVE-2024-29025", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-29025 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a6bf0e1b-929b-543a-b412-8697cd762692", "id": "CVE-2024-47535", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47535 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d9370174-987b-54ef-98e9-34d7871828cd", "id": "CVE-2025-24970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24970 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6c6b6e1e-488c-5d45-869c-259ce43114bc", "id": "CVE-2025-25193", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-25193 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:90a6be0e-7837-58b7-af35-93f818c3b700", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1fdba279-99f1-5b5b-b797-af78ef5f02e8", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d26ab518-6689-5612-91bf-d924c098eaf9", "id": "CVE-2025-58057", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58057 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7987dbcb-2af7-5c3b-81d9-2d5e56b567d7", "id": "CVE-2025-59419", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59419 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:817295b9-6467-52ea-adaa-a78c231c90ba", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b004ac36-cb82-5d27-b055-6724fbdc927a", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:68f24fd9-2b09-5774-aec2-96e3017cdf82", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:acc87100-b82e-5e26-803b-c4aec4486785", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.63.Final-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.63.Final-tuxcare.2" } ] }