{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:fba63cbd-e048-5b9a-999f-f119655e5894", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-parent@4.1.73.Final-tuxcare.1", "type": "library", "group": "io.netty", "name": "netty-parent", "version": "4.1.73.Final-tuxcare.1", "purl": "pkg:maven/io.netty/netty-parent@4.1.73.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:fd40a5bf-9c37-54ed-862a-93531f926032", "id": "CVE-2022-24823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24823 is fixed in version 4.1.73.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d5e9e111-343b-5d40-94a2-267fdc80447d", "id": "CVE-2022-41881", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41881 is fixed in version 4.1.73.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1410a06d-e66c-5760-8961-b790127b2785", "id": "CVE-2022-41915", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-41915 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fe4e3bfd-6b99-5118-98f7-36647f12886c", "id": "CVE-2023-34462", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-34462 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3e2946a7-432c-574c-b974-9fb6d403b17a", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.73.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b15c2be7-8b8f-58c6-850f-8e5bf1fa9ab9", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-parent 4.1.73.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a540fb09-86ed-5f03-8e46-e586b697626c", "id": "CVE-2024-29025", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-29025 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e5835f37-b81b-5730-9006-979de83afe63", "id": "CVE-2024-47535", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47535 is fixed in version 4.1.73.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f008ec31-ce70-5f87-a28f-245fceaff615", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.73.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:779a7e75-ff03-5f0b-96dd-197ce0b2ad78", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6dfe31b7-5503-5cd5-84aa-ca2c8fe867a0", "id": "CVE-2025-55163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55163 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1ea9b174-3c39-551c-831c-8242773ce97d", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:778b703c-7aef-5c09-8a5e-5bbf3c20d834", "id": "CVE-2025-58057", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58057 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:71f6bbaf-6bfd-5113-830e-1669ee609185", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.73.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:394f8fc1-3b65-553a-a8f8-53facda68db9", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:61f719e7-b20f-59d3-b430-20e0eefba643", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:858b5f57-0311-56b9-9094-45fc943b8491", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5def9269-c78f-557b-b382-3770064665b1", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.73.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.73.Final-tuxcare.1" } ] }