{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:c2c00a02-456f-566d-ad8d-fd1c82a5c7f3", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.63.Final-tuxcare.3", "type": "library", "group": "io.netty", "name": "netty-resolver-dns", "version": "4.1.63.Final-tuxcare.3", "purl": "pkg:maven/io.netty/netty-resolver-dns@4.1.63.Final-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:c2bf4373-45fc-5d3d-b718-e64e2764c722", "id": "CVE-2021-37136", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37136 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-resolver-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0a05a037-275b-5f91-acf9-a9ad083a64bc", "id": "CVE-2021-37137", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37137 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-resolver-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bce93984-1838-5740-9472-8b94bcb9723e", "id": "CVE-2021-43797", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-43797 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-resolver-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8812a722-b143-592b-a22f-3a18cff745f7", "id": "CVE-2022-24823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24823 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-resolver-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:40ca3e8d-84e0-58de-93a9-2d6be65a64bc", "id": "CVE-2022-41881", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41881 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-resolver-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:11725605-cc79-5e05-90f5-3b9a0f33d576", "id": "CVE-2022-41915", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41915 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-resolver-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b360102c-fca4-5d62-887b-4e1d7825823c", "id": "CVE-2023-34462", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34462 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-resolver-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ae558549-8996-523f-adf5-079ac2a66118", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-resolver-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e8ca1c9d-045d-5a44-8797-24ba47034bc7", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-resolver-dns 4.1.63.Final-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:461939e0-d6eb-570f-87d0-4fc47d095cd1", "id": "CVE-2024-29025", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-29025 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-resolver-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:75d0d1dd-8849-563d-8154-d63c22a4c221", "id": "CVE-2024-47535", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47535 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-resolver-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a09e5abc-debc-526f-aa61-e2eea4d70023", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-resolver-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3def5de1-3e81-5530-acbe-13d154b2b84f", "id": "CVE-2025-25193", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-25193 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-resolver-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2adc9d56-2241-52db-a451-92634eb8a1f2", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-resolver-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a5219807-4ead-5b9d-a732-8bb8322d0ba3", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-resolver-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:09be6172-a3e7-5d5d-828a-63f783c63fd3", "id": "CVE-2025-58057", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58057 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-resolver-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4d7f4a58-0009-5cf0-b79b-13190d53250a", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-resolver-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:cbe249ea-3600-5449-a015-ff169f9a5d2a", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-resolver-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:395c5b26-048c-5649-a677-11bd2d786fa1", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-resolver-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:999ae84a-08a1-5471-94cb-b14b69f67374", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-resolver-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c4575153-e815-5837-89b5-74887b58a53c", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-resolver-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.63.Final-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.63.Final-tuxcare.3" } ] }