{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:13aa2760-c6f4-533f-84c2-1c43482b0398", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1", "type": "library", "group": "io.netty", "name": "netty-handler", "version": "4.1.93.Final-tuxcare.1", "purl": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:9558208d-8b00-500a-ad51-e554e0fbb047", "id": "CVE-2023-34462", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34462 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7aeb25bc-d619-5e4d-be1e-8685200114f0", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5ad5f678-95d3-55f0-93de-a6b6f625d56d", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-handler 4.1.93.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:437476a1-58e6-524e-8e01-2cebbf70afaa", "id": "CVE-2024-29025", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-29025 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7ffd0796-604b-58d0-b5b2-05efdcf0fc97", "id": "CVE-2024-47535", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47535 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9505a76d-e674-5dce-8def-05401df67230", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a74c564e-966b-5911-8f47-94a357885f6f", "id": "CVE-2025-25193", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-25193 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8ea2c6b0-5ef8-5262-ba7e-5b46a070ca98", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5f1771ce-d295-50af-95b2-f4773ca38842", "id": "CVE-2025-58056", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58056 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:aadbe877-50fe-55bb-add3-cfbc821c2534", "id": "CVE-2025-58057", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58057 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b292e766-a452-5b3e-a1d0-57c00b8ef9bd", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5c6f9695-106a-575f-872b-4dc9811814f9", "id": "CVE-2025-67735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-67735 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7f9b228e-e282-5323-ab7a-4d14eff0a2ab", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c480076e-d402-56d0-9768-d65237b36b31", "id": "CVE-2026-33871", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-33871 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fd27b433-a4da-549a-b988-6d918c406c67", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }