{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:5843b6f1-1935-5133-9b23-81c0a6e24d98", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-microbench@4.1.49.Final-tuxcare.1", "type": "library", "group": "io.netty", "name": "netty-microbench", "version": "4.1.49.Final-tuxcare.1", "purl": "pkg:maven/io.netty/netty-microbench@4.1.49.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:22f49a99-9510-5e20-877b-2c28d3185a44", "id": "CVE-2021-21290", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-21290 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-microbench." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-microbench@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1de55f4a-8314-5b4f-a96e-f5b3d5d4e63c", "id": "CVE-2021-21295", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-21295 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-microbench." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-microbench@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:96db5818-62e5-54af-8e86-34b3b7938a51", "id": "CVE-2021-21409", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-21409 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-microbench." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-microbench@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dbef12e5-099a-5b97-b70c-548b87d865d3", "id": "CVE-2021-37136", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37136 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-microbench." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-microbench@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:869c1f16-f2c6-5798-be42-755ce3a80a5e", "id": "CVE-2021-37137", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37137 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-microbench." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-microbench@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:20ae4246-2457-59b1-ac49-3a39cad349f2", "id": "CVE-2021-43797", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-43797 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-microbench." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-microbench@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:af24a72e-f746-5426-a0f2-43df2cc31574", "id": "CVE-2022-24823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24823 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-microbench." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-microbench@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:852404f2-746a-5caf-8e08-2da41274f6a0", "id": "CVE-2022-41881", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-41881 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-microbench." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-microbench@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:eeeaf394-1141-5f14-aaad-6a6381188cd4", "id": "CVE-2022-41915", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-41915 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-microbench." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-microbench@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:91ab4828-2f7e-5c16-91ba-9ef751567d87", "id": "CVE-2023-34462", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34462 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-microbench." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-microbench@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:366a3b6d-02bd-58ec-82a5-e3d831932980", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-microbench." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-microbench@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d39ed1d6-eccd-57c2-9239-02f901c4492e", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-microbench 4.1.49.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-microbench@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:591827a4-814f-5f9e-b443-8a07c0ac01cb", "id": "CVE-2024-29025", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-29025 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-microbench." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-microbench@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a5e72018-bb25-5f75-ae2e-cbf44cd63de4", "id": "CVE-2024-47535", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-47535 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-microbench." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-microbench@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4fc67309-6d92-5b38-88fe-bcb25e5d7e61", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-microbench." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-microbench@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:595db00f-ad36-55ec-b613-f38ffc6135dc", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-microbench." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-microbench@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:487d9439-5e0a-52c6-bd3d-326710bef14f", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-microbench." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-microbench@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:98faba25-d085-500a-9e0d-00d81cd5127b", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-microbench." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-microbench@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:abe1887b-95eb-50c4-8a8b-9acaabde8b91", "id": "CVE-2025-58057", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58057 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-microbench." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-microbench@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b2527cda-022b-5884-a9ff-a34075cb0af2", "id": "CVE-2025-59419", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59419 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-microbench." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-microbench@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:209c0819-b2a0-5362-b2eb-b41f17b80f28", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-microbench." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-microbench@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:030e3cce-e713-58f9-b400-4f1b4af75f38", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-microbench." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-microbench@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:66d0b5dd-2f5e-5ba8-b75d-c3dc2a668825", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-microbench." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-microbench@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7c40fac3-1904-5333-b8ae-79137f9397d1", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-microbench." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-microbench@4.1.49.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-microbench@4.1.49.Final-tuxcare.1" } ] }