{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:3046e8cd-fd33-5672-a39f-04d57f98da19", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1", "type": "library", "group": "io.netty", "name": "netty-resolver", "version": "4.1.63.Final-tuxcare.1", "purl": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:784d813a-8122-5058-9cde-fdf814ea951a", "id": "CVE-2021-37136", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37136 is fixed in version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:47152580-213d-55e7-af9b-8425988e7735", "id": "CVE-2021-37137", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-37137 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3a389ee0-9b36-5b27-9c9d-5459b469ed6d", "id": "CVE-2021-43797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-43797 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:96592bf5-6a69-5e12-be88-2dcefe2997f0", "id": "CVE-2022-24823", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-24823 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:27c4c3ba-afbd-56d8-9e5c-f3005d512289", "id": "CVE-2022-41881", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-41881 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c15c21fd-a3b8-50af-8fe4-a324bb6cf8d4", "id": "CVE-2022-41915", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-41915 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8463b8b2-da80-5c6a-8787-bd9346ba4736", "id": "CVE-2023-34462", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-34462 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ef0fc8f2-b4f8-582b-884c-35f77ea3b719", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:281f5f69-1e04-5992-8a8c-df42a7e955b6", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-resolver 4.1.63.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c2696629-d7ed-598b-8f1e-83d7c21b3d91", "id": "CVE-2024-29025", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-29025 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:871c4f56-5e13-55c1-adaf-9a1e4e3c2f2c", "id": "CVE-2024-47535", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-47535 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3cab1e60-d2ab-5af3-88ab-281f941cc035", "id": "CVE-2025-24970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24970 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b6346ecc-0983-5eed-aa9f-8ad1a5d28883", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4a62cabc-df78-5dbd-b73d-fb12b6100076", "id": "CVE-2025-55163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55163 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c90c7490-711d-582d-b7db-0e21f7147c6a", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3f7e2036-6f1c-533a-87f7-e66e08751908", "id": "CVE-2025-58057", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58057 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a2ca3559-9939-57e9-a4ff-b75b146bd1a2", "id": "CVE-2025-59419", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59419 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:95231d93-081d-5bb4-8791-9710f7e2109b", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:06bb8fb3-f9a3-50e2-beba-f3d8214bd393", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6ee2c73b-e7ac-5374-81f6-c12a3c20f06d", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2047f7e5-8c35-5d73-a8e5-64a8093f38ce", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }