{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:319c0f5a-78e7-5228-bce7-68c3c42b5fb8", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-microbench@4.1.73.Final-tuxcare.1", "type": "library", "group": "io.netty", "name": "netty-microbench", "version": "4.1.73.Final-tuxcare.1", "purl": "pkg:maven/io.netty/netty-microbench@4.1.73.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:9f8548b1-6e8d-5c14-a797-59962e5af9be", "id": "CVE-2022-24823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24823 is fixed in version 4.1.73.Final-tuxcare.1 of io.netty:netty-microbench." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-microbench@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:024a6cf4-c659-57bd-94f8-572ec7c01f34", "id": "CVE-2022-41881", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41881 is fixed in version 4.1.73.Final-tuxcare.1 of io.netty:netty-microbench." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-microbench@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:43a867f8-7b06-5260-9e7d-d10b8aaae759", "id": "CVE-2022-41915", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-41915 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-microbench." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-microbench@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6ecfe710-4a9a-5af2-9371-ecbce769392f", "id": "CVE-2023-34462", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-34462 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-microbench." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-microbench@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4e55a369-b997-56ae-a9f7-f633118296db", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.73.Final-tuxcare.1 of io.netty:netty-microbench." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-microbench@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2838eb30-43f0-524c-b602-a974bbcd41e5", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-microbench 4.1.73.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-microbench@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cb987b51-8ea1-5933-ac6b-53fa57da1d0e", "id": "CVE-2024-29025", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-29025 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-microbench." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-microbench@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7f45724a-2448-52e7-bd2d-fbf3651d0b1f", "id": "CVE-2024-47535", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47535 is fixed in version 4.1.73.Final-tuxcare.1 of io.netty:netty-microbench." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-microbench@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:aaa1f3e3-2a7e-5942-b19a-c041157c83e4", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.73.Final-tuxcare.1 of io.netty:netty-microbench." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-microbench@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:843ef1fb-6913-53fe-b909-3bea1d26bda0", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-microbench." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-microbench@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ae6e7902-e9b1-5c10-a5c2-527f66948019", "id": "CVE-2025-55163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55163 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-microbench." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-microbench@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6136dfc5-8eba-55da-9021-08f79aabf00a", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-microbench." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-microbench@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7558d527-ea83-5f27-93b8-fa7427e1d493", "id": "CVE-2025-58057", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58057 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-microbench." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-microbench@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:eaf3d8c2-8f10-5b9c-bd4f-507f7e882979", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.73.Final-tuxcare.1 of io.netty:netty-microbench." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-microbench@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:98142718-d03d-5252-a18d-9645c81b7f9e", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-microbench." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-microbench@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5461d990-4d24-5507-acb4-4300429ab8de", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-microbench." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-microbench@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:622a58c6-dc16-5347-872e-4dc016c2ad6c", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-microbench." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-microbench@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6b9550a1-1e8f-5076-a5ed-b352fd4ec1d4", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-microbench." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-microbench@4.1.73.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-microbench@4.1.73.Final-tuxcare.1" } ] }