{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:af7dd751-4478-5aa2-894b-289f5e743154", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-transport-native-epoll@4.1.58.Final-tuxcare.1", "type": "library", "group": "io.netty", "name": "netty-transport-native-epoll", "version": "4.1.58.Final-tuxcare.1", "purl": "pkg:maven/io.netty/netty-transport-native-epoll@4.1.58.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:5b2f7903-e9f9-5164-b10f-9fee1a41b9a0", "id": "CVE-2021-21290", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-21290 is fixed in version 4.1.58.Final-tuxcare.1 of io.netty:netty-transport-native-epoll." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-epoll@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2f951256-2e8d-5fed-907b-a1a0a3a39fe1", "id": "CVE-2021-21295", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-21295 is fixed in version 4.1.58.Final-tuxcare.1 of io.netty:netty-transport-native-epoll." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-epoll@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:098346d4-55e1-5a0c-be5f-65da5e53a9bf", "id": "CVE-2021-21409", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-21409 affects version 4.1.58.Final-tuxcare.1 of io.netty:netty-transport-native-epoll." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-epoll@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8121552d-d562-5a46-8557-ab0e7d80c5ab", "id": "CVE-2021-37136", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37136 is fixed in version 4.1.58.Final-tuxcare.1 of io.netty:netty-transport-native-epoll." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-epoll@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a2466284-608c-517f-a319-ca2d0f0d7d9b", "id": "CVE-2021-37137", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37137 is fixed in version 4.1.58.Final-tuxcare.1 of io.netty:netty-transport-native-epoll." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-epoll@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8dae6235-df09-55f0-ae56-565959f62e74", "id": "CVE-2021-43797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-43797 affects version 4.1.58.Final-tuxcare.1 of io.netty:netty-transport-native-epoll." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-epoll@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7c2ff42b-4ce0-5721-b72b-9847f253a662", "id": "CVE-2022-24823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24823 is fixed in version 4.1.58.Final-tuxcare.1 of io.netty:netty-transport-native-epoll." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-epoll@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0afd2428-895f-5d76-8988-03f7b9ad5e92", "id": "CVE-2022-41881", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41881 is fixed in version 4.1.58.Final-tuxcare.1 of io.netty:netty-transport-native-epoll." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-epoll@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:390797dd-1405-5195-a276-33b257d4f76c", "id": "CVE-2023-34462", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34462 is fixed in version 4.1.58.Final-tuxcare.1 of io.netty:netty-transport-native-epoll." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-epoll@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8858f738-c873-55c3-b93a-25f811c8dda5", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 4.1.58.Final-tuxcare.1 of io.netty:netty-transport-native-epoll." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-epoll@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fab6cd41-958e-5a9a-b501-c9e6edcd3181", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-transport-native-epoll 4.1.58.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-epoll@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d3bd2f4c-6c19-5ed2-8f04-00a90fde4e9f", "id": "CVE-2024-29025", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-29025 affects version 4.1.58.Final-tuxcare.1 of io.netty:netty-transport-native-epoll." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-epoll@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:62eb6791-0697-5a0f-a6d6-a43a4f3d0b25", "id": "CVE-2024-47535", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-47535 affects version 4.1.58.Final-tuxcare.1 of io.netty:netty-transport-native-epoll." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-epoll@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0d14b5b5-e0a3-5552-bc7e-6bd3e181c20d", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.58.Final-tuxcare.1 of io.netty:netty-transport-native-epoll." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-epoll@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9c6fea89-29d2-5e74-b88b-f43dec59f72b", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.58.Final-tuxcare.1 of io.netty:netty-transport-native-epoll." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-epoll@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:af70139d-bcd2-5f3a-9beb-a48a6844ff85", "id": "CVE-2025-55163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55163 affects version 4.1.58.Final-tuxcare.1 of io.netty:netty-transport-native-epoll." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-epoll@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:874b20fa-6cc9-553c-98b5-7b864f395750", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.58.Final-tuxcare.1 of io.netty:netty-transport-native-epoll." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-epoll@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3aecf501-8cae-52dc-a4d4-ddbeb450d3f7", "id": "CVE-2025-58057", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58057 affects version 4.1.58.Final-tuxcare.1 of io.netty:netty-transport-native-epoll." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-epoll@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3141b3f6-1250-58c0-97a0-6c919ed86d35", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.58.Final-tuxcare.1 of io.netty:netty-transport-native-epoll." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-epoll@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:585f2c7e-52ca-58f7-b7f3-ff840dc6c033", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.58.Final-tuxcare.1 of io.netty:netty-transport-native-epoll." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-epoll@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:be490722-6621-5d6e-a77e-f041a3ff697c", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.58.Final-tuxcare.1 of io.netty:netty-transport-native-epoll." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-epoll@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:77d7685a-e86d-541c-8c99-a881fc2c981f", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.58.Final-tuxcare.1 of io.netty:netty-transport-native-epoll." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-epoll@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dc3efe30-3d7b-5ce6-b171-3c18b1602430", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.58.Final-tuxcare.1 of io.netty:netty-transport-native-epoll." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-epoll@4.1.58.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-transport-native-epoll@4.1.58.Final-tuxcare.1" } ] }