{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:452116e7-e1bb-523e-bec7-d434fa3b4645", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.92.Final-tuxcare.1", "type": "library", "group": "io.netty", "name": "netty-resolver-dns", "version": "4.1.92.Final-tuxcare.1", "purl": "pkg:maven/io.netty/netty-resolver-dns@4.1.92.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:ca3a0723-b3bb-5062-8baf-42f2545b862e", "id": "CVE-2023-34462", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34462 is fixed in version 4.1.92.Final-tuxcare.1 of io.netty:netty-resolver-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.92.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1e11cb6a-a919-5aaa-994e-e1538cdf6074", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.92.Final-tuxcare.1 of io.netty:netty-resolver-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.92.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b9edeef4-57ac-5c7d-8f6c-1d32eb77fd4e", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-resolver-dns 4.1.92.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.92.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8a1bcda1-4ad3-5d72-a5b2-be7e56bfd701", "id": "CVE-2024-29025", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-29025 is fixed in version 4.1.92.Final-tuxcare.1 of io.netty:netty-resolver-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.92.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9ab4a129-1ac8-5ca3-b2df-ea44ed1761d2", "id": "CVE-2024-47535", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47535 is fixed in version 4.1.92.Final-tuxcare.1 of io.netty:netty-resolver-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.92.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:97761922-512f-57b9-95a7-262a576bc297", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.92.Final-tuxcare.1 of io.netty:netty-resolver-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.92.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:64dddad8-cc6b-5279-bbab-10ce33e41389", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.92.Final-tuxcare.1 of io.netty:netty-resolver-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.92.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c320f7e6-2254-5fc2-973c-2b9a145c50fe", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.92.Final-tuxcare.1 of io.netty:netty-resolver-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.92.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9992d093-d9f7-5efc-94bc-f8054657beb7", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.92.Final-tuxcare.1 of io.netty:netty-resolver-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.92.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ccce1b26-82dc-53a8-b1ce-0e1c6b0de3e6", "id": "CVE-2025-58057", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58057 affects version 4.1.92.Final-tuxcare.1 of io.netty:netty-resolver-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.92.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ab3ea4fc-2d0c-57a5-9be8-cf8a06033094", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.92.Final-tuxcare.1 of io.netty:netty-resolver-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.92.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:da4334de-d610-5794-9ee7-8be27b2983a4", "id": "CVE-2025-67735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-67735 is fixed in version 4.1.92.Final-tuxcare.1 of io.netty:netty-resolver-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.92.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1b14c7f7-fe2a-56a8-9075-f56dc408948f", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.92.Final-tuxcare.1 of io.netty:netty-resolver-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.92.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a9dda61b-ea8c-599f-85d2-0301425a8095", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.92.Final-tuxcare.1 of io.netty:netty-resolver-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.92.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9e4f33d3-5dc4-5ad0-b47a-7f22da4305bc", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.92.Final-tuxcare.1 of io.netty:netty-resolver-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.92.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-resolver-dns@4.1.92.Final-tuxcare.1" } ] }