{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:575d685d-246c-5e6b-a1dd-8c2b9b81a300", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-transport-native-epoll@4.1.48.Final-tuxcare.1", "type": "library", "group": "io.netty", "name": "netty-transport-native-epoll", "version": "4.1.48.Final-tuxcare.1", "purl": "pkg:maven/io.netty/netty-transport-native-epoll@4.1.48.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:e7e686ab-4e7a-5180-bbe0-0c3caec1e802", "id": "CVE-2021-21290", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-21290 is fixed in version 4.1.48.Final-tuxcare.1 of io.netty:netty-transport-native-epoll." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-epoll@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f5035374-5d44-5e52-a6fa-05638a9c86fc", "id": "CVE-2021-21295", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-21295 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-transport-native-epoll." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-epoll@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e9adccad-9449-5b33-8f40-99ef6ea42711", "id": "CVE-2021-21409", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-21409 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-transport-native-epoll." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-epoll@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0a78f105-8b43-53d6-ac7c-1dd7020eab72", "id": "CVE-2021-37136", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-37136 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-transport-native-epoll." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-epoll@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5b3dc1e7-ea8f-5f19-9e83-9bdfa1e10886", "id": "CVE-2021-37137", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37137 is fixed in version 4.1.48.Final-tuxcare.1 of io.netty:netty-transport-native-epoll." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-epoll@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4c5d9de6-ef7f-5ea4-ac31-3c39ef8ab550", "id": "CVE-2021-43797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-43797 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-transport-native-epoll." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-epoll@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b8324f71-aac3-53d2-82ea-51090bef0152", "id": "CVE-2022-24823", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-24823 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-transport-native-epoll." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-epoll@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4bf21d88-9e73-561a-84d6-01cf2d4d7380", "id": "CVE-2022-41881", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-41881 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-transport-native-epoll." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-epoll@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cec791eb-b57b-5de8-b916-96f15a68bce5", "id": "CVE-2022-41915", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-41915 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-transport-native-epoll." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-epoll@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ed4b6708-c5b5-5a86-ad59-1cf3a0738a1c", "id": "CVE-2023-34462", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-34462 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-transport-native-epoll." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-epoll@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d2e2b2da-c4f0-5782-98b3-28e8033e4f4e", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.48.Final-tuxcare.1 of io.netty:netty-transport-native-epoll." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-epoll@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c5fe4ed1-d981-5c53-baa8-8765d8f0b05a", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-transport-native-epoll 4.1.48.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-epoll@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9e0f5459-6e41-539f-8916-21677425c0cf", "id": "CVE-2024-29025", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-29025 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-transport-native-epoll." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-epoll@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7d6aef47-9691-57cf-bfe4-39f2d81f78c9", "id": "CVE-2024-47535", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-47535 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-transport-native-epoll." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-epoll@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7795bcc7-36cb-5481-a6aa-c974b6945334", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.48.Final-tuxcare.1 of io.netty:netty-transport-native-epoll." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-epoll@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:43123634-6233-57b3-92d5-97121fa7ab38", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-transport-native-epoll." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-epoll@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:969ae79b-52e5-5360-88f0-ae872015413f", "id": "CVE-2025-55163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55163 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-transport-native-epoll." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-epoll@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:45e2c227-1e33-546c-a7b0-7ed8ba6afe6e", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-transport-native-epoll." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-epoll@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e55eade5-4b53-5a1a-b161-444b3215fcf7", "id": "CVE-2025-58057", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58057 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-transport-native-epoll." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-epoll@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4cab7adb-aaec-5c70-89e9-40618ae2e45e", "id": "CVE-2025-59419", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59419 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-transport-native-epoll." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-epoll@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cb3975c3-6a67-5446-9976-d26d0960029a", "id": "CVE-2025-67735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-67735 is fixed in version 4.1.48.Final-tuxcare.1 of io.netty:netty-transport-native-epoll." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-epoll@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:aeaf0219-be48-5748-86d5-a94c31c6e289", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-transport-native-epoll." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-epoll@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0c4d1a1d-44bc-5964-ab8e-d3a91c25de65", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-transport-native-epoll." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-epoll@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0239e911-a258-5fa6-acb8-a0553dfafbe1", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-transport-native-epoll." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-epoll@4.1.48.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-transport-native-epoll@4.1.48.Final-tuxcare.1" } ] }