{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:485f35e4-7f9a-5955-a904-69ff5d4506f4", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-transport-classes-kqueue@4.1.82.Final-tuxcare.1", "type": "library", "group": "io.netty", "name": "netty-transport-classes-kqueue", "version": "4.1.82.Final-tuxcare.1", "purl": "pkg:maven/io.netty/netty-transport-classes-kqueue@4.1.82.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:97126472-6ecb-5e0f-96eb-7cec293dd23a", "id": "CVE-2022-41881", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41881 is fixed in version 4.1.82.Final-tuxcare.1 of io.netty:netty-transport-classes-kqueue." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-classes-kqueue@4.1.82.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f112c503-135f-5848-a8cc-4c449947c6c1", "id": "CVE-2022-41915", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-41915 affects version 4.1.82.Final-tuxcare.1 of io.netty:netty-transport-classes-kqueue." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-classes-kqueue@4.1.82.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2bc82d91-76c7-5961-b935-edc7856ead11", "id": "CVE-2023-34462", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-34462 affects version 4.1.82.Final-tuxcare.1 of io.netty:netty-transport-classes-kqueue." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-classes-kqueue@4.1.82.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:02e1e1d4-9b8b-56c9-ba12-27c4a891adf9", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.82.Final-tuxcare.1 of io.netty:netty-transport-classes-kqueue." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-classes-kqueue@4.1.82.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d47287be-c71d-523c-b89a-ef6586c4cfd5", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-transport-classes-kqueue 4.1.82.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-classes-kqueue@4.1.82.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5b64014b-cf1c-58ed-ae06-45385d944586", "id": "CVE-2024-29025", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-29025 affects version 4.1.82.Final-tuxcare.1 of io.netty:netty-transport-classes-kqueue." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-classes-kqueue@4.1.82.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3d304a68-7cec-517c-b992-e3b30bac5369", "id": "CVE-2024-47535", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-47535 affects version 4.1.82.Final-tuxcare.1 of io.netty:netty-transport-classes-kqueue." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-classes-kqueue@4.1.82.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:afdbf790-aac4-593d-be71-852e1351e009", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.82.Final-tuxcare.1 of io.netty:netty-transport-classes-kqueue." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-classes-kqueue@4.1.82.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e7cf96b4-c158-52b9-befe-387f2ae9ab0b", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.82.Final-tuxcare.1 of io.netty:netty-transport-classes-kqueue." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-classes-kqueue@4.1.82.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:80dd44bc-277a-5bc1-b67c-f294ad707002", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.82.Final-tuxcare.1 of io.netty:netty-transport-classes-kqueue." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-classes-kqueue@4.1.82.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:02b85f16-2061-56b5-b666-cc5d42aeb7a5", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.82.Final-tuxcare.1 of io.netty:netty-transport-classes-kqueue." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-classes-kqueue@4.1.82.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f76a4cf7-30d8-59da-a2eb-4f6fbc911af4", "id": "CVE-2025-58057", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58057 affects version 4.1.82.Final-tuxcare.1 of io.netty:netty-transport-classes-kqueue." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-classes-kqueue@4.1.82.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2692490e-ec02-5d88-9ece-133d80f0ddb6", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.82.Final-tuxcare.1 of io.netty:netty-transport-classes-kqueue." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-classes-kqueue@4.1.82.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5b922e0e-3025-55e1-9a84-921aa8083d83", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.82.Final-tuxcare.1 of io.netty:netty-transport-classes-kqueue." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-classes-kqueue@4.1.82.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b55c687a-2b7a-5d5d-a960-e6d4898fb711", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.82.Final-tuxcare.1 of io.netty:netty-transport-classes-kqueue." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-classes-kqueue@4.1.82.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9e342e81-1b41-5ccc-bb32-3d3ddd180328", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.82.Final-tuxcare.1 of io.netty:netty-transport-classes-kqueue." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-classes-kqueue@4.1.82.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fb0aaddb-1cc0-5ae7-900b-838058a673e7", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "resolved", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p is fixed in version 4.1.82.Final-tuxcare.1 of io.netty:netty-transport-classes-kqueue." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-classes-kqueue@4.1.82.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-transport-classes-kqueue@4.1.82.Final-tuxcare.1" } ] }