{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:07a79bba-aea3-5092-bb60-000ead48eac4", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.48.Final-tuxcare.1", "type": "library", "group": "io.netty", "name": "netty-testsuite-osgi", "version": "4.1.48.Final-tuxcare.1", "purl": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.48.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:70d81418-3a98-5b94-a517-ccdc8161eef8", "id": "CVE-2021-21290", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-21290 is fixed in version 4.1.48.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c2219d3e-e644-57d2-8a78-411d58e64512", "id": "CVE-2021-21295", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-21295 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:78afac07-daf8-5041-959e-69850b99e338", "id": "CVE-2021-21409", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-21409 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:99f353de-824f-571f-a171-95202fab59fe", "id": "CVE-2021-37136", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-37136 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8ff1ff93-af24-5f0c-867b-933634c18a12", "id": "CVE-2021-37137", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37137 is fixed in version 4.1.48.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9ad89010-e6a4-522d-a08b-b2f43369c1de", "id": "CVE-2021-43797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-43797 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:318e010a-2e51-5db0-a241-705cffffc6e4", "id": "CVE-2022-24823", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-24823 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cfcfc775-e296-5380-ab09-c804d018fc10", "id": "CVE-2022-41881", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-41881 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4007d5e5-50c4-5851-a2f5-7d17c3af81e9", "id": "CVE-2022-41915", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-41915 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4f2c6b09-565d-55d5-820c-dc15fe4ad3d0", "id": "CVE-2023-34462", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-34462 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:719d191e-bc6e-5d6c-8a69-979e5ae961f1", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.48.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7ef7d45b-0ce2-5b8b-b6eb-3b0c885237e8", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-testsuite-osgi 4.1.48.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:396b9566-fda1-5317-bdb1-f4a277712729", "id": "CVE-2024-29025", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-29025 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:10791833-1574-5f46-becc-16bda4eb734d", "id": "CVE-2024-47535", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-47535 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:35e7175e-f066-5fc2-a887-921bc4fb1a05", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.48.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7195d14a-a890-5df0-bd9e-f02afdf83973", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:15fa4cf6-6db8-5ab7-b0f5-17042826ae06", "id": "CVE-2025-55163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55163 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:27d39ef4-0798-58b5-828c-e17dac91220f", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9fb83db0-2cba-5f4b-9a80-022459e57add", "id": "CVE-2025-58057", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58057 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a8836e3d-fdbd-5001-835f-d3b3986fbee2", "id": "CVE-2025-59419", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59419 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:13a3a42b-43f8-5e0a-bd4a-03e9b42ff3bf", "id": "CVE-2025-67735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-67735 is fixed in version 4.1.48.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1aa779f3-0996-5599-a80e-75a37ace62d3", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6eafb7c7-99e5-54a6-bed6-bed9c681e014", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e4448393-548b-5495-b148-9641aeb2411b", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.48.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.48.Final-tuxcare.1" } ] }