{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:f412bfa7-2c2b-5d53-81b5-4fa404640130", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-transport-classes-kqueue@4.1.75.Final-tuxcare.1", "type": "library", "group": "io.netty", "name": "netty-transport-classes-kqueue", "version": "4.1.75.Final-tuxcare.1", "purl": "pkg:maven/io.netty/netty-transport-classes-kqueue@4.1.75.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:30948ae8-012f-537b-bcb7-3340e551d900", "id": "CVE-2022-24823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24823 is fixed in version 4.1.75.Final-tuxcare.1 of io.netty:netty-transport-classes-kqueue." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-classes-kqueue@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7f91cfba-c741-59ce-9e31-ea6e6aa641f1", "id": "CVE-2022-41881", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41881 is fixed in version 4.1.75.Final-tuxcare.1 of io.netty:netty-transport-classes-kqueue." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-classes-kqueue@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6d593d0a-a506-5414-8a3c-589d5cde9f53", "id": "CVE-2022-41915", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-41915 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-transport-classes-kqueue." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-classes-kqueue@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:42d110fa-b98c-51b8-869c-2efa4a645af4", "id": "CVE-2023-34462", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34462 is fixed in version 4.1.75.Final-tuxcare.1 of io.netty:netty-transport-classes-kqueue." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-classes-kqueue@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c0b28ec3-8064-5b98-a4eb-b803be6d9fe1", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.75.Final-tuxcare.1 of io.netty:netty-transport-classes-kqueue." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-classes-kqueue@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:23ba4a7f-f81a-5452-a1c7-7f42787732aa", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-transport-classes-kqueue 4.1.75.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-classes-kqueue@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e23042d6-b964-5846-a2cc-4c29237dfc0c", "id": "CVE-2024-29025", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-29025 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-transport-classes-kqueue." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-classes-kqueue@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b588bebb-6fd0-5632-adc6-81a9737719d6", "id": "CVE-2024-47535", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47535 is fixed in version 4.1.75.Final-tuxcare.1 of io.netty:netty-transport-classes-kqueue." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-classes-kqueue@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fb475397-a076-5eb6-9ce9-e759602532e1", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.75.Final-tuxcare.1 of io.netty:netty-transport-classes-kqueue." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-classes-kqueue@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b91c481f-49df-5fa6-9728-2e220206162a", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-transport-classes-kqueue." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-classes-kqueue@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:017f8690-2c52-5727-95d7-05dcc3a65f7d", "id": "CVE-2025-55163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55163 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-transport-classes-kqueue." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-classes-kqueue@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:aa9b086d-9b24-5d77-9b8d-c4ad679dd788", "id": "CVE-2025-58056", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58056 is fixed in version 4.1.75.Final-tuxcare.1 of io.netty:netty-transport-classes-kqueue." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-classes-kqueue@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f5d371a3-35bb-55d2-9423-a57476e61126", "id": "CVE-2025-58057", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58057 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-transport-classes-kqueue." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-classes-kqueue@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7814fa17-f5b0-5845-a0c1-72ce514e8d99", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.75.Final-tuxcare.1 of io.netty:netty-transport-classes-kqueue." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-classes-kqueue@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9ba770ca-d03f-54ea-b4cd-bb528e6dc67e", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-transport-classes-kqueue." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-classes-kqueue@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0992315d-30c7-5241-93a5-eae725b4b736", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-transport-classes-kqueue." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-classes-kqueue@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bb3c0fb8-184e-5bbd-8422-300c199e063c", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-transport-classes-kqueue." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-classes-kqueue@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6b4e7097-98c5-5033-accb-f4cce8e46f89", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "resolved", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p is fixed in version 4.1.75.Final-tuxcare.1 of io.netty:netty-transport-classes-kqueue." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-classes-kqueue@4.1.75.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-transport-classes-kqueue@4.1.75.Final-tuxcare.1" } ] }