{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:272543db-7c87-57e8-b471-e239453c99c2", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.112.Final-tuxcare.1", "type": "library", "group": "io.netty", "name": "netty-testsuite-http2", "version": "4.1.112.Final-tuxcare.1", "purl": "pkg:maven/io.netty/netty-testsuite-http2@4.1.112.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:25d11738-1fbd-5bb2-8a9f-405acbb36522", "id": "CVE-2024-47535", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-47535 affects version 4.1.112.Final-tuxcare.1 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.112.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8b97505d-4018-5ac8-8e8f-35cc4a2eaa12", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.112.Final-tuxcare.1 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.112.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e6520c12-fee7-59fa-b237-8b8d072b33b1", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.112.Final-tuxcare.1 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.112.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:12d69308-1bef-5877-bad7-0ac9a7de6cc8", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.112.Final-tuxcare.1 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.112.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fbfdfa07-57a3-5833-8f4f-f15af8644f9c", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.112.Final-tuxcare.1 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.112.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e56e556d-ba89-5463-a548-8dfff416a8b4", "id": "CVE-2025-58057", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58057 is fixed in version 4.1.112.Final-tuxcare.1 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.112.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e0f7627d-bbba-59ce-a321-5b8f74323c0a", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.112.Final-tuxcare.1 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.112.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4d2c48b0-da98-55bd-9483-0af9e2c7818a", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.112.Final-tuxcare.1 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.112.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b2a012c8-5a09-5e96-bed2-ef68dfc91c96", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.112.Final-tuxcare.1 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.112.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b43f7223-202f-50a3-b917-af4bc1bda9fa", "id": "CVE-2026-33871", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-33871 is fixed in version 4.1.112.Final-tuxcare.1 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.112.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.112.Final-tuxcare.1" } ] }