{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:a7cda4d0-a06f-5162-a8d5-bffc30cdd7d5", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-resolver@4.1.112.Final-tuxcare.2", "type": "library", "group": "io.netty", "name": "netty-resolver", "version": "4.1.112.Final-tuxcare.2", "purl": "pkg:maven/io.netty/netty-resolver@4.1.112.Final-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:4e1bb261-7ff1-531c-b72c-0d22882da074", "id": "CVE-2024-47535", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-47535 affects version 4.1.112.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.112.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c3f7702a-5be5-5966-914b-9e4ba1fd37c8", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.112.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.112.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:687d5220-fea8-5e80-bdd5-0a3f44ae7aeb", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.112.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.112.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:be55027f-a345-562d-ab96-659c27fe68aa", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.112.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.112.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2585dfc6-8593-56a6-93c2-19b310e987a8", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.112.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.112.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a4d2f62b-f662-596d-b280-e750c694b8a6", "id": "CVE-2025-58057", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58057 is fixed in version 4.1.112.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.112.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6c636f89-e02d-55ed-a335-47b1b1b6ed06", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.112.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.112.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:44ff1734-c259-5ef4-82d2-58449bbd1e67", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.112.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.112.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f7d5bfc2-5937-58b2-beb2-de0714768bf3", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.112.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.112.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b7ccc3cf-9c6f-53ee-8322-3b94fe5a6aa6", "id": "CVE-2026-33871", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-33871 is fixed in version 4.1.112.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.112.Final-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.112.Final-tuxcare.2" } ] }