{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:55112d32-eb75-54fb-8fd3-bce869f64eb9", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.48.Final-tuxcare.1", "type": "library", "group": "io.netty", "name": "netty-resolver-dns", "version": "4.1.48.Final-tuxcare.1", "purl": "pkg:maven/io.netty/netty-resolver-dns@4.1.48.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:7572f6d0-5ba8-5087-85b3-b2c052f2ddce", "id": "CVE-2021-21290", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-21290 is fixed in version 4.1.48.Final-tuxcare.1 of io.netty:netty-resolver-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cbffa614-5ffc-5505-a407-2bda02810210", "id": "CVE-2021-21295", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-21295 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-resolver-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3ab99c3e-23bc-5ca7-83b3-cdbbfb21b443", "id": "CVE-2021-21409", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-21409 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-resolver-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fd2a7b31-8fef-5276-b740-9e778893fc06", "id": "CVE-2021-37136", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-37136 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-resolver-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f092391d-fc45-5bc6-9941-8f0d533b70a2", "id": "CVE-2021-37137", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37137 is fixed in version 4.1.48.Final-tuxcare.1 of io.netty:netty-resolver-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f7a95cd3-abf3-565c-b159-0b2bde2f9120", "id": "CVE-2021-43797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-43797 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-resolver-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7f6e8ccf-ecd5-50bc-8454-1aed8494b274", "id": "CVE-2022-24823", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-24823 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-resolver-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fb06d370-022f-54fd-b3ed-cad1c06f0db7", "id": "CVE-2022-41881", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-41881 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-resolver-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:474acde4-3003-55b0-bb8f-30492b6f77da", "id": "CVE-2022-41915", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-41915 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-resolver-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d368d14e-d93e-5c93-96a3-8cf3b350b041", "id": "CVE-2023-34462", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-34462 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-resolver-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c5ace281-da39-54e0-825b-e43c98a1f7fa", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.48.Final-tuxcare.1 of io.netty:netty-resolver-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:31c95c56-51d7-5700-a1d1-6630b7463eac", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-resolver-dns 4.1.48.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:29aaba35-f895-5202-9e9d-4c75ad9d826f", "id": "CVE-2024-29025", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-29025 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-resolver-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3a6f8675-1d11-5219-be49-94c61d5ce37b", "id": "CVE-2024-47535", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-47535 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-resolver-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ce480372-b0c6-5940-a8e3-53118224db24", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.48.Final-tuxcare.1 of io.netty:netty-resolver-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1281ebe0-5bb5-50d7-90ed-9e1241793f03", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-resolver-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d3d76cf0-f67c-50b1-8ef2-0d36a32bd1a2", "id": "CVE-2025-55163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55163 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-resolver-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:254370a2-2f25-5af9-a48e-cdeffe34d237", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-resolver-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ba9c30ff-4cba-548f-a7d2-25a439fec7c2", "id": "CVE-2025-58057", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58057 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-resolver-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5db0eea9-780d-5709-a00c-75db1afd8689", "id": "CVE-2025-59419", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59419 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-resolver-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:435cce11-c14b-52f6-9492-1f3e0732fab8", "id": "CVE-2025-67735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-67735 is fixed in version 4.1.48.Final-tuxcare.1 of io.netty:netty-resolver-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b16c6ec1-b554-5343-8d92-31cd5d90e9db", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-resolver-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f58480c7-05fd-5e7e-b6ac-b33939a0faa9", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-resolver-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:06d55a82-c9ab-58d4-888c-6e11684ef195", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-resolver-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.48.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.48.Final-tuxcare.1" } ] }