{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:62bc0613-5afb-5fdc-b604-d9b4d272894a", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-handler@4.1.63.Final-tuxcare.2", "type": "library", "group": "io.netty", "name": "netty-handler", "version": "4.1.63.Final-tuxcare.2", "purl": "pkg:maven/io.netty/netty-handler@4.1.63.Final-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:69be6d5c-11b4-51a1-acdd-9821000127fe", "id": "CVE-2021-37136", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37136 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:948dafa1-5ea5-5c53-98ab-32c43691192f", "id": "CVE-2021-37137", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37137 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2bc4112f-b6f2-583d-b25f-3b0ac41bb621", "id": "CVE-2021-43797", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-43797 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8b2b3311-bc32-59ca-9a12-ceee75c538f7", "id": "CVE-2022-24823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24823 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f5c4f7f5-da7c-51fa-8e43-c815c51c6e54", "id": "CVE-2022-41881", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41881 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:da3ec9d1-e26b-5399-b22f-709bf0e4fa17", "id": "CVE-2022-41915", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41915 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e9cfb9d5-d68e-53cb-a6da-2e22550b50da", "id": "CVE-2023-34462", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34462 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8f355ec9-c01d-56e5-a563-f5124e6ceae4", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8c2822b8-fabc-5282-8d3d-9154dc3a4864", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-handler 4.1.63.Final-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ee4f6fce-395a-5d85-876e-9872fc45e0bb", "id": "CVE-2024-29025", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-29025 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f79a05d6-830f-5609-bd10-5e886d1591a3", "id": "CVE-2024-47535", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47535 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5d422680-62cb-541c-85ab-0f6578fcf74c", "id": "CVE-2025-24970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24970 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bc2fa623-6116-5e93-a6e2-1fa6da6bd459", "id": "CVE-2025-25193", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-25193 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0ea3345e-cfb6-5af3-9039-62068c311759", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bcbec9e4-cf3a-5c6d-9866-dc8ebf354cbd", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:29940343-2cec-538b-ac5e-6ba1396e723d", "id": "CVE-2025-58057", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58057 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9dea59e9-ff78-50b5-a21c-4483f80bd04a", "id": "CVE-2025-59419", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59419 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:becaf986-f1b1-55dc-897b-1545919bcb8a", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1f6245bd-fe61-5b11-9a82-a045b52906f6", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:717f0e89-f146-56ae-b5d7-3218e9c7ddbf", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:31903e16-3367-5e63-a234-5ce2134f8a00", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.63.Final-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.63.Final-tuxcare.2" } ] }