{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:e65449d8-48c4-596e-9667-b71a03c94431", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-parent@4.1.63.Final-tuxcare.2", "type": "library", "group": "io.netty", "name": "netty-parent", "version": "4.1.63.Final-tuxcare.2", "purl": "pkg:maven/io.netty/netty-parent@4.1.63.Final-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:fc111c24-0084-52e7-a14c-a32361138e8c", "id": "CVE-2021-37136", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37136 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5cd22fcf-8dd7-5432-bc04-9bc66f7461ef", "id": "CVE-2021-37137", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37137 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:06d5af8c-396e-5bba-acee-2c834f5211e5", "id": "CVE-2021-43797", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-43797 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:65d712e6-f96b-543e-bd20-c075a65a379c", "id": "CVE-2022-24823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24823 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9a4bc42c-9e46-5880-8d0d-629350cd373d", "id": "CVE-2022-41881", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41881 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:480cd047-381f-541a-97c8-55f8b18ed002", "id": "CVE-2022-41915", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41915 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:75562995-2599-5c9c-aac2-890966178ab7", "id": "CVE-2023-34462", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34462 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6bf2e085-73e4-54a9-963a-0278121b040f", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:33cb107e-543b-50d2-992f-b3c0fb83a053", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-parent 4.1.63.Final-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a8b8b429-1fac-5ae6-a400-92eaf421742e", "id": "CVE-2024-29025", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-29025 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ae018925-13e9-55df-820b-3c5e0aab7659", "id": "CVE-2024-47535", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47535 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:68fc238e-206a-5c71-b685-b797c5164a3a", "id": "CVE-2025-24970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24970 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fc5a72d0-9b93-5842-a9b7-7aa213101c5d", "id": "CVE-2025-25193", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-25193 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:28d52bd2-094c-51d7-a10b-71a1912a24e7", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cb0e2126-9a17-5bbf-8182-839b870f6ccb", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:228bcc31-33f8-58a9-878b-c00a699e2565", "id": "CVE-2025-58057", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58057 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:dc882260-56ca-503d-a296-5e857fe0bc1c", "id": "CVE-2025-59419", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59419 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cb0e630f-4d6d-5839-86fc-7579b58150de", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:00dfbba7-f382-5b64-a8ba-0d367e9950ec", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:621251dd-4abd-5d17-8713-63f1f95d8e9d", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b81b9ece-6878-552e-ada2-3f1ea87888da", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.63.Final-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.63.Final-tuxcare.2" } ] }