{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:0984cdbe-cd39-5d87-bfc7-a33931f3e29a", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.60.Final-tuxcare.1", "type": "library", "group": "io.netty", "name": "netty-testsuite-http2", "version": "4.1.60.Final-tuxcare.1", "purl": "pkg:maven/io.netty/netty-testsuite-http2@4.1.60.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:7b2782f1-0527-5ad1-a40a-372df714c4cb", "id": "CVE-2021-21409", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-21409 is fixed in version 4.1.60.Final-tuxcare.1 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.60.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4f0ba101-9405-5c8c-ac1e-7f79e4c97373", "id": "CVE-2021-37136", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37136 is fixed in version 4.1.60.Final-tuxcare.1 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.60.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c97d720a-5036-51a2-ab4c-dcca1c632cab", "id": "CVE-2021-37137", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37137 is fixed in version 4.1.60.Final-tuxcare.1 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.60.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2c4d8055-4374-53f1-b548-92c902e3f311", "id": "CVE-2021-43797", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-43797 is fixed in version 4.1.60.Final-tuxcare.1 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.60.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:93f3dbda-62e5-58cd-9dac-978e5184c2ac", "id": "CVE-2022-24823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24823 is fixed in version 4.1.60.Final-tuxcare.1 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.60.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cd164e96-0920-5f9e-a262-e51f58542f4c", "id": "CVE-2022-41881", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41881 is fixed in version 4.1.60.Final-tuxcare.1 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.60.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bd5b362d-da3f-5ea0-b05e-f85e79e59a65", "id": "CVE-2023-34462", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34462 is fixed in version 4.1.60.Final-tuxcare.1 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.60.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:774d20fd-35c5-5bf8-860c-8f68add50067", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 4.1.60.Final-tuxcare.1 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.60.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a1fb0b3d-99fb-5494-9504-fc89f0f226df", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-testsuite-http2 4.1.60.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.60.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:db04075b-bab0-552c-95b0-0a09adf35ed8", "id": "CVE-2024-29025", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-29025 is fixed in version 4.1.60.Final-tuxcare.1 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.60.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d350e805-7d91-5bf1-9104-020b5c3627e2", "id": "CVE-2024-47535", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47535 is fixed in version 4.1.60.Final-tuxcare.1 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.60.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5216235e-3ff4-5a1f-b06c-ff1057a49432", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.60.Final-tuxcare.1 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.60.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2cc5402b-bd0c-5cb4-8496-ebc89a1f03f0", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.60.Final-tuxcare.1 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.60.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ca5b1f7b-3c00-5893-87dd-947ae69c8148", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.60.Final-tuxcare.1 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.60.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:84a70065-b03a-58a4-8e01-83bf6a3a0a75", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.60.Final-tuxcare.1 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.60.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:38840ce9-a8fd-53f3-8315-85f982c05d10", "id": "CVE-2025-58057", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58057 affects version 4.1.60.Final-tuxcare.1 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.60.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:099d1d66-f8c8-5dba-922a-4a1fa11d8cef", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.60.Final-tuxcare.1 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.60.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:41789d47-e1ad-58e2-b657-48171e31294a", "id": "CVE-2025-67735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-67735 is fixed in version 4.1.60.Final-tuxcare.1 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.60.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cd1cf47d-1783-578d-9774-f105e78af5ff", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.60.Final-tuxcare.1 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.60.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9c9ee7ad-b471-5f29-80f1-efb9b0279bb1", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.60.Final-tuxcare.1 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.60.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e5a0c27b-bbb5-5e09-a3ab-d20ecf7e586d", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "resolved", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p is fixed in version 4.1.60.Final-tuxcare.1 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.60.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.60.Final-tuxcare.1" } ] }