{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:e81a7f8c-82d1-5405-87cd-05ea1730521a", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-handler@4.1.52.Final-tuxcare.1", "type": "library", "group": "io.netty", "name": "netty-handler", "version": "4.1.52.Final-tuxcare.1", "purl": "pkg:maven/io.netty/netty-handler@4.1.52.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:e6d173a4-86d5-5230-b2b0-798aeab888d8", "id": "CVE-2021-21290", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-21290 is fixed in version 4.1.52.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.52.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:58eac04c-b6ab-5232-ba7b-3fb7b5eb8158", "id": "CVE-2021-21295", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-21295 is fixed in version 4.1.52.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.52.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bdc7edc2-28f8-5dd3-9f2a-e651229385b6", "id": "CVE-2021-21409", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-21409 is fixed in version 4.1.52.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.52.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bfc9b727-682a-59f8-8474-9093d0f3d3ac", "id": "CVE-2021-37136", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37136 is fixed in version 4.1.52.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.52.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:338a9e4e-f741-54cb-a21a-848780cb91af", "id": "CVE-2021-37137", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37137 is fixed in version 4.1.52.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.52.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:12ea9ce7-979f-586e-bfa4-ac82438e728c", "id": "CVE-2021-43797", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-43797 is fixed in version 4.1.52.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.52.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6419068b-5d8f-5b2a-8e4a-c53ea943e694", "id": "CVE-2022-24823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24823 is fixed in version 4.1.52.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.52.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5d25f534-dc9d-535e-9339-53b0fc613c5a", "id": "CVE-2022-41881", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41881 is fixed in version 4.1.52.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.52.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2ecfc06c-f1a8-5dd4-b8d8-0612bd09f138", "id": "CVE-2023-34462", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-34462 affects version 4.1.52.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.52.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7b3bc406-11ec-56af-9928-329eeef3a82e", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.52.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.52.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:79551b11-6cf8-59b7-aecd-d071979ae779", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-handler 4.1.52.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.52.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5aba5510-1d5c-534c-aad9-45a8597580c7", "id": "CVE-2024-29025", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-29025 is fixed in version 4.1.52.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.52.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b93b3af5-df29-5e21-a8c7-94809a677819", "id": "CVE-2024-47535", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47535 is fixed in version 4.1.52.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.52.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3733fbce-e3e1-5a06-a950-9960750352b8", "id": "CVE-2025-24970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24970 affects version 4.1.52.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.52.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fb736bd4-2bc6-52fd-aa89-8ec76b23dd50", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.52.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.52.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a94645cf-5405-537e-83e5-95071bbd3f84", "id": "CVE-2025-55163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55163 affects version 4.1.52.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.52.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1972f628-d7f0-551a-9a9b-c666d28c405a", "id": "CVE-2025-58056", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58056 is fixed in version 4.1.52.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.52.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ba3a4940-6013-50f5-8358-309979eef47d", "id": "CVE-2025-58057", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58057 is fixed in version 4.1.52.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.52.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1d902ec5-ee0d-51c2-a069-6dee87964a68", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.52.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.52.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3757eda9-5afa-51ee-9a27-d2a537edb0f9", "id": "CVE-2025-67735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-67735 is fixed in version 4.1.52.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.52.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e8bfe970-ff7a-57ab-9cff-8945e243d366", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.52.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.52.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:72527d93-2158-59a0-9226-f017fcd00790", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.52.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.52.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a03f137f-85bb-5068-8928-541197420ffd", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "resolved", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p is fixed in version 4.1.52.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.52.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.52.Final-tuxcare.1" } ] }