{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:4addfb50-6047-5d2d-b8ad-e1a2435da357", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-parent@4.1.60.Final-tuxcare.1", "type": "library", "group": "io.netty", "name": "netty-parent", "version": "4.1.60.Final-tuxcare.1", "purl": "pkg:maven/io.netty/netty-parent@4.1.60.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:444402f6-4d16-51d3-b880-b5abec723630", "id": "CVE-2021-21409", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-21409 is fixed in version 4.1.60.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.60.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c35499ff-2da2-57b3-8563-80e96ba7da46", "id": "CVE-2021-37136", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37136 is fixed in version 4.1.60.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.60.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:83ddec09-b60d-58c8-ba13-b1bba54ada6b", "id": "CVE-2021-37137", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37137 is fixed in version 4.1.60.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.60.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a343eb6f-e763-51f2-80a5-1e05b7497ef2", "id": "CVE-2021-43797", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-43797 is fixed in version 4.1.60.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.60.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2b426a7c-daf1-5de2-933b-1e873dfca253", "id": "CVE-2022-24823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24823 is fixed in version 4.1.60.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.60.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e99373a1-16f3-56e9-aada-db10c4d482ab", "id": "CVE-2022-41881", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41881 is fixed in version 4.1.60.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.60.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6bb7ffef-5ca5-5645-9ad6-52372ef75e29", "id": "CVE-2023-34462", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34462 is fixed in version 4.1.60.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.60.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:98eee7d7-2267-5e07-a07d-b7a773c638e5", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 4.1.60.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.60.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:98028923-5543-5381-9aba-22db05a59464", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-parent 4.1.60.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.60.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1425f089-0d19-59b9-a0fd-51888ab088fa", "id": "CVE-2024-29025", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-29025 is fixed in version 4.1.60.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.60.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:16a3a6aa-a9ec-5d03-9187-543f0c07ad2d", "id": "CVE-2024-47535", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47535 is fixed in version 4.1.60.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.60.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8f8b248d-b2d4-5996-a281-0d505e571b61", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.60.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.60.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2001146e-8621-5757-a252-3bb6e075d257", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.60.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.60.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:696e503e-90da-5b2f-9251-258b4435c5e2", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.60.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.60.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7a18cdcc-ce46-5e10-9894-d26972e2d547", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.60.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.60.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:397cf7ba-3f2a-59c3-b357-dd71a9c8e472", "id": "CVE-2025-58057", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58057 affects version 4.1.60.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.60.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f9c3cdec-e052-578c-b86c-73a5f31db2d9", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.60.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.60.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:068f7328-5c16-52d7-adcb-78db2469a7ff", "id": "CVE-2025-67735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-67735 is fixed in version 4.1.60.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.60.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:55633048-7aa9-5557-9960-dda6510b6d48", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.60.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.60.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:944a2303-8b57-5d14-944b-b7bc2eb9b233", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.60.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.60.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8e10aae1-f331-50fd-8361-80e8078d09e3", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "resolved", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p is fixed in version 4.1.60.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.60.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.60.Final-tuxcare.1" } ] }