{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:ecc9e938-1985-5f42-a814-f97392372afc", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.73.Final-tuxcare.1", "type": "library", "group": "io.netty", "name": "netty-handler-proxy", "version": "4.1.73.Final-tuxcare.1", "purl": "pkg:maven/io.netty/netty-handler-proxy@4.1.73.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:c7636841-8ff7-5b33-a67c-76031d6c951e", "id": "CVE-2022-24823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24823 is fixed in version 4.1.73.Final-tuxcare.1 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:466e217f-690a-52ba-b300-6957c9c78e99", "id": "CVE-2022-41881", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41881 is fixed in version 4.1.73.Final-tuxcare.1 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:80ebd2fc-9878-5195-b8b7-30e65b5a28ed", "id": "CVE-2022-41915", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-41915 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:96df526b-760c-545f-aab7-50b1bfd15847", "id": "CVE-2023-34462", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-34462 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:356ccefd-17d7-546b-9497-160b50ee9dad", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.73.Final-tuxcare.1 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6cce79ef-01ae-52e3-9f82-1b958b12c44e", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-handler-proxy 4.1.73.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:69b3dfe1-2f85-5ead-b8b1-87da12dbdbca", "id": "CVE-2024-29025", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-29025 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:316985a8-8a0e-548c-a144-64923dbdf20c", "id": "CVE-2024-47535", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47535 is fixed in version 4.1.73.Final-tuxcare.1 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:48e6a1b5-6d32-5a15-a7fb-a32dd111d5f2", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.73.Final-tuxcare.1 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e2ecb648-1625-5fc1-aeec-492c9b95eecc", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ac3a00d0-3e3a-5237-9da4-d5faef3f46cd", "id": "CVE-2025-55163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55163 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9fc3cbaa-5ae3-53d6-bd36-7a9f0aa1fa68", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:77176dcd-44a4-5b2b-88a6-2e8952a74ddc", "id": "CVE-2025-58057", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58057 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5eb7ef67-03d1-5a42-90a7-284382bb03f0", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.73.Final-tuxcare.1 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:da40f3a6-5907-5c42-909e-83bd83eb52e3", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0214267f-fae4-5d34-bcb3-ae77384497bc", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:713d347e-966d-51b6-a1ec-4d85c17f2519", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c895ca35-390c-50e5-8e90-30dce46036cd", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.73.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.73.Final-tuxcare.1" } ] }