{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:1ef5295d-b0d7-5149-bb5d-acc51c896e5b", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-parent@4.1.82.Final-tuxcare.1", "type": "library", "group": "io.netty", "name": "netty-parent", "version": "4.1.82.Final-tuxcare.1", "purl": "pkg:maven/io.netty/netty-parent@4.1.82.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:135b23ea-e092-5f8c-b104-93ff00fab4bb", "id": "CVE-2022-41881", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41881 is fixed in version 4.1.82.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.82.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:74e705bc-afd2-5ac0-bed9-8e5e05a0d294", "id": "CVE-2022-41915", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-41915 affects version 4.1.82.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.82.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5377f2fe-7251-59a9-a698-f461ec7af74d", "id": "CVE-2023-34462", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-34462 affects version 4.1.82.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.82.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:275afff3-9d3d-55f7-91d2-5e35ff41bd04", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.82.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.82.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:79945146-764c-5964-a047-ce8b9bfecdcc", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-parent 4.1.82.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.82.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:46f15cb8-2d41-5977-b6f6-4e0ceb79477a", "id": "CVE-2024-29025", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-29025 affects version 4.1.82.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.82.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:06261c9d-e039-5b51-894c-ddc555107082", "id": "CVE-2024-47535", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-47535 affects version 4.1.82.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.82.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c2ffb6a5-6c45-5423-8b93-884f216f4e1d", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.82.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.82.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:55a5a1b3-3d10-5bc0-b4bd-2a6db7f09d37", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.82.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.82.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0692f5bd-e79f-539a-b737-a8ea554688d4", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.82.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.82.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:42e85df0-130e-5bfd-a3b1-283e929d27ad", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.82.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.82.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1a85a9f3-e788-545f-89d1-bed05e5d8277", "id": "CVE-2025-58057", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58057 affects version 4.1.82.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.82.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8cfdaffa-7b5b-51ad-8c31-d99143145e8b", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.82.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.82.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b95e59c2-c875-5ac9-8176-7b92e6fb9119", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.82.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.82.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0eb7f5da-c16e-59b3-95c6-8d162602248e", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.82.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.82.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c3199363-8524-5375-8fbd-d295ffd913ea", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.82.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.82.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:99afa6d6-8a3b-547a-97fc-5d21f3f97e71", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "resolved", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p is fixed in version 4.1.82.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.82.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.82.Final-tuxcare.1" } ] }