{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:a86d8eee-4c50-5175-8662-3c3749b4e789", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.49.Final-tuxcare.1", "type": "library", "group": "io.netty", "name": "netty-testsuite-osgi", "version": "4.1.49.Final-tuxcare.1", "purl": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.49.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:75c03f4f-59af-5c60-b84e-ca9ac03db38c", "id": "CVE-2021-21290", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-21290 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c3cbea37-964d-585c-a0b4-f404a196ff87", "id": "CVE-2021-21295", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-21295 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fc71a9ae-1d85-5b18-80ad-a490ea6cf019", "id": "CVE-2021-21409", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-21409 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:db7d7664-7f30-55d8-aded-996eb514bafd", "id": "CVE-2021-37136", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37136 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dd1db027-ce98-551a-a5a6-996601548dd0", "id": "CVE-2021-37137", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37137 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ff53b1a3-a83b-5100-922d-9faf669007f4", "id": "CVE-2021-43797", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-43797 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1e97ae78-5cef-5000-a788-953e9204e002", "id": "CVE-2022-24823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24823 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:53605168-b076-5454-85bc-ec9f74580ecb", "id": "CVE-2022-41881", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-41881 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e57c791d-ce17-52ac-a028-00187eb64b71", "id": "CVE-2022-41915", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-41915 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bdb73733-36e5-5339-9eaa-6202dde1d6db", "id": "CVE-2023-34462", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34462 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cc2a1906-6b3b-5111-9738-0f372f5ab644", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:23e0f1de-a1ca-5bdf-aa07-17727d174c93", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-testsuite-osgi 4.1.49.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e6c57c09-e03b-5b15-9b1f-0701b6d51476", "id": "CVE-2024-29025", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-29025 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bc6ecfdb-6226-5df0-97ef-a5f74e1ee517", "id": "CVE-2024-47535", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-47535 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:495a1316-f9eb-5d43-b1b1-a6e863020fed", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ad8ce5b3-86f4-5b55-979d-abe52a0ef48e", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:73ee3a6a-fa36-5121-82b1-e360e4cdb2d9", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:72b5abc7-4e70-543c-85d5-55335b71f9fb", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2f893c56-7aca-516c-a42b-3b56c72baba9", "id": "CVE-2025-58057", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58057 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e264bfa6-1e4a-5c06-a3c1-78ba7a7409ad", "id": "CVE-2025-59419", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59419 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:57b54114-558e-502e-92f4-f694dbe90b3f", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:51527be4-a869-583d-9e27-01f02b2614a6", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:118685b0-aaaa-505c-b652-45f9be506bfc", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:270c0946-b5ca-5ea5-93d1-a307c2d449cc", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.49.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.49.Final-tuxcare.1" } ] }