{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:53cb9c44-4b7b-5cef-9705-ff1b51225e1f", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-transport-native-unix-common-tests@4.1.48.Final-tuxcare.1", "type": "library", "group": "io.netty", "name": "netty-transport-native-unix-common-tests", "version": "4.1.48.Final-tuxcare.1", "purl": "pkg:maven/io.netty/netty-transport-native-unix-common-tests@4.1.48.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:103a1216-0243-5e58-b347-5e51a09e5661", "id": "CVE-2021-21290", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-21290 is fixed in version 4.1.48.Final-tuxcare.1 of io.netty:netty-transport-native-unix-common-tests." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common-tests@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2628b5b0-be28-520c-a6ec-60edcbb5ec13", "id": "CVE-2021-21295", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-21295 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-transport-native-unix-common-tests." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common-tests@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cd1d7ed4-3c6d-544a-b6b8-888d7649da0a", "id": "CVE-2021-21409", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-21409 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-transport-native-unix-common-tests." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common-tests@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7fad68ba-c4f5-5d43-8d63-6a31b06d4f9a", "id": "CVE-2021-37136", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-37136 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-transport-native-unix-common-tests." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common-tests@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b443123a-a6b3-57fd-a6fa-04524b198b67", "id": "CVE-2021-37137", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37137 is fixed in version 4.1.48.Final-tuxcare.1 of io.netty:netty-transport-native-unix-common-tests." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common-tests@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5a0586b5-e3a4-5bce-aedb-eafd69f88f05", "id": "CVE-2021-43797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-43797 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-transport-native-unix-common-tests." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common-tests@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:210d3606-d8ee-5d74-b2be-064fc47979b6", "id": "CVE-2022-24823", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-24823 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-transport-native-unix-common-tests." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common-tests@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:284ae088-b0e9-5764-9b0a-50e4a1d40703", "id": "CVE-2022-41881", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-41881 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-transport-native-unix-common-tests." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common-tests@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1009fa8d-0b2d-514d-b9f2-597d4446827f", "id": "CVE-2022-41915", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-41915 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-transport-native-unix-common-tests." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common-tests@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fa68e741-a16c-59d9-a18c-7ac44a107deb", "id": "CVE-2023-34462", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-34462 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-transport-native-unix-common-tests." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common-tests@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:07b41d01-0944-5dec-8d4c-948bf7104e22", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.48.Final-tuxcare.1 of io.netty:netty-transport-native-unix-common-tests." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common-tests@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:35ebbf55-a76f-513a-8f61-3f1a309d0c71", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-transport-native-unix-common-tests 4.1.48.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common-tests@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2e93c6d5-b37d-5942-ab01-ebdab4a940be", "id": "CVE-2024-29025", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-29025 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-transport-native-unix-common-tests." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common-tests@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e2094fc3-4dfa-5045-b8f1-fe57478a2966", "id": "CVE-2024-47535", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-47535 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-transport-native-unix-common-tests." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common-tests@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2ae885b0-6750-55a6-a823-bb80bf689032", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.48.Final-tuxcare.1 of io.netty:netty-transport-native-unix-common-tests." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common-tests@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:49ed8108-4bc9-5293-95f6-53acbc0102a1", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-transport-native-unix-common-tests." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common-tests@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d05631a0-dad8-514b-8c0a-4c0679b19c15", "id": "CVE-2025-55163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55163 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-transport-native-unix-common-tests." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common-tests@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9ced4aac-e9fc-5467-8223-26422f57a8eb", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-transport-native-unix-common-tests." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common-tests@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:62aaa249-8a8d-56cc-a260-8ab74cd97128", "id": "CVE-2025-58057", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58057 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-transport-native-unix-common-tests." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common-tests@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2e0a4d3a-dfe4-5478-898a-b0d269d7388e", "id": "CVE-2025-59419", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59419 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-transport-native-unix-common-tests." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common-tests@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6fd5a028-5135-54c3-94cd-eab9d95ebc56", "id": "CVE-2025-67735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-67735 is fixed in version 4.1.48.Final-tuxcare.1 of io.netty:netty-transport-native-unix-common-tests." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common-tests@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:28909c22-b1bf-5701-8fb9-c34c3c1b835f", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-transport-native-unix-common-tests." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common-tests@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b0360c3c-9d62-5272-a566-760f106c3c88", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-transport-native-unix-common-tests." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common-tests@4.1.48.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b1f054b5-5bf6-54b7-a034-61fedb195834", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.48.Final-tuxcare.1 of io.netty:netty-transport-native-unix-common-tests." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common-tests@4.1.48.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common-tests@4.1.48.Final-tuxcare.1" } ] }