{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:b09e906b-3009-53e6-94ca-16b774c73aac", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.63.Final-tuxcare.2", "type": "library", "group": "io.netty", "name": "netty-testsuite-http2", "version": "4.1.63.Final-tuxcare.2", "purl": "pkg:maven/io.netty/netty-testsuite-http2@4.1.63.Final-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:d0373d89-3a46-5527-9a8a-a74b2189842b", "id": "CVE-2021-37136", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37136 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:651f5546-78d2-519a-bea9-08239661a508", "id": "CVE-2021-37137", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37137 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5a6da87c-5d15-5eb1-9121-af9b40d27c2d", "id": "CVE-2021-43797", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-43797 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2a739923-4230-5882-9cfa-9a52ca6eba47", "id": "CVE-2022-24823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24823 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e3bf8b98-9619-5dc6-ab27-147b15c11d9e", "id": "CVE-2022-41881", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41881 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cdab4ddf-f53c-59ea-adf8-4b4a63ffa9a7", "id": "CVE-2022-41915", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41915 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5fa829f2-2f17-5058-987a-9e1655dd8b0e", "id": "CVE-2023-34462", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34462 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d8df5adc-4904-5b35-a902-b5c385846d6b", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1d66bc25-9869-5b24-a562-752e27ed95de", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-testsuite-http2 4.1.63.Final-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c15b6051-9dc7-5df3-9949-e14fe9a5c8f7", "id": "CVE-2024-29025", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-29025 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e756723d-3160-5ed2-a72c-3679c6ec79d0", "id": "CVE-2024-47535", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47535 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e2afc4e9-333a-5c09-8d4c-5ddac2dd2b29", "id": "CVE-2025-24970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24970 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b63e30c3-dd77-5bff-8cab-05260e4b45c8", "id": "CVE-2025-25193", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-25193 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1d4b5eed-1220-5099-bf10-9d2a487e9dff", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6672db79-863b-5836-b552-01ab56a85a5b", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9d15eeb0-4b1f-5e5e-b2dc-ffedbb96481e", "id": "CVE-2025-58057", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58057 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a6e813ee-3e14-5e9b-a36f-17f6c12ad551", "id": "CVE-2025-59419", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59419 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:455ec24f-457a-5062-8bb9-dc0d235b6d6f", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:785bbe4e-cc07-5657-a829-12f0dc0c579e", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4d4e1526-3d8d-5ad2-86c7-079c3a0faa81", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d3c756bd-fc79-5abf-9679-66236fc866fe", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.63.Final-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.63.Final-tuxcare.2" } ] }