{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:8d1da5e6-2408-50f0-8ac5-e4732f12f47b", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-resolver@4.1.49.Final-tuxcare.1", "type": "library", "group": "io.netty", "name": "netty-resolver", "version": "4.1.49.Final-tuxcare.1", "purl": "pkg:maven/io.netty/netty-resolver@4.1.49.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:a8455994-5902-5f14-a3f0-824c674eed1d", "id": "CVE-2021-21290", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-21290 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f393fc7a-6a7f-56bb-a049-48ebec593a7e", "id": "CVE-2021-21295", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-21295 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:37cc58e2-1e38-504d-9b43-95b1abe7af60", "id": "CVE-2021-21409", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-21409 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ac5090e8-7997-51e6-baf7-dfec242a5cd2", "id": "CVE-2021-37136", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37136 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8f659279-53d9-59a3-a39e-90a267ceb160", "id": "CVE-2021-37137", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37137 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cc2f753b-698c-5fc1-a827-6c987572fcc1", "id": "CVE-2021-43797", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-43797 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d978e96b-415b-530f-bd8e-d4d4f0e27279", "id": "CVE-2022-24823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24823 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:11f6f2a7-38f4-533b-91d5-b708bdd26e36", "id": "CVE-2022-41881", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-41881 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:99d7b613-54b3-5410-941a-8068d54cc9db", "id": "CVE-2022-41915", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-41915 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:359eb0fc-59e6-5f0c-af10-c05f3399dc4e", "id": "CVE-2023-34462", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34462 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:14c1e30c-4f04-5e30-9cfd-4b7778d7f5a5", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:77214792-27cf-5d3e-b621-2bf93dbf1038", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-resolver 4.1.49.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e0376444-bf02-5fce-80d3-92b9f26fa4f9", "id": "CVE-2024-29025", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-29025 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1a23c2f5-9cf8-5e3e-8ec3-8e82a34a2ee8", "id": "CVE-2024-47535", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-47535 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e19c190e-5705-5c07-847d-586f7d4ac7ef", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:12fc8613-5c21-5c3a-aa7d-af1ef20bf77f", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ca27fd12-aa78-5d69-8e11-8cb4d917d097", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f5b0ac42-a631-547c-85f4-656d71d565da", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7626b134-4322-5010-8d25-333358ccedf0", "id": "CVE-2025-58057", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58057 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:08518732-1190-5027-87f9-96d24b250658", "id": "CVE-2025-59419", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59419 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4e980df1-6848-5c4c-8a6a-9df0af212489", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8468d55f-e266-5be4-9209-43ed62abc5b7", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:28384fd8-1b9e-502a-8178-a8a25bc72af6", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b91f1cec-43d3-5e1b-9df1-91c0fbc9c5e8", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.49.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.49.Final-tuxcare.1" } ] }