{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:5b37f3da-4cb1-5011-b6e5-47027468e2d2", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-transport-native-unix-common@4.1.58.Final-tuxcare.1", "type": "library", "group": "io.netty", "name": "netty-transport-native-unix-common", "version": "4.1.58.Final-tuxcare.1", "purl": "pkg:maven/io.netty/netty-transport-native-unix-common@4.1.58.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:57a10715-5683-5b8c-b232-28a0d958ee48", "id": "CVE-2021-21290", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-21290 is fixed in version 4.1.58.Final-tuxcare.1 of io.netty:netty-transport-native-unix-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:664cb1ac-dbe0-53e5-8580-dc95c5eab8a7", "id": "CVE-2021-21295", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-21295 is fixed in version 4.1.58.Final-tuxcare.1 of io.netty:netty-transport-native-unix-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5301d3b2-7997-5991-b1b2-606fa169901b", "id": "CVE-2021-21409", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-21409 affects version 4.1.58.Final-tuxcare.1 of io.netty:netty-transport-native-unix-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4e1519ad-5558-5aad-ba94-396cf4ee0eb5", "id": "CVE-2021-37136", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37136 is fixed in version 4.1.58.Final-tuxcare.1 of io.netty:netty-transport-native-unix-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c27a4f80-4f64-5e30-9494-8e453b783167", "id": "CVE-2021-37137", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37137 is fixed in version 4.1.58.Final-tuxcare.1 of io.netty:netty-transport-native-unix-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0e185612-4e13-584d-81cf-639234c3ced1", "id": "CVE-2021-43797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-43797 affects version 4.1.58.Final-tuxcare.1 of io.netty:netty-transport-native-unix-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:293bf546-bafc-5b9b-ae87-2d5781a54359", "id": "CVE-2022-24823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24823 is fixed in version 4.1.58.Final-tuxcare.1 of io.netty:netty-transport-native-unix-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7d6909fe-8552-58f4-a5ba-cfbc2f2f2f73", "id": "CVE-2022-41881", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41881 is fixed in version 4.1.58.Final-tuxcare.1 of io.netty:netty-transport-native-unix-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:69007f04-f4f8-53bf-aea8-3889cb2f3734", "id": "CVE-2023-34462", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34462 is fixed in version 4.1.58.Final-tuxcare.1 of io.netty:netty-transport-native-unix-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:93139319-4469-5a7b-a42e-6d2133b98e50", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 4.1.58.Final-tuxcare.1 of io.netty:netty-transport-native-unix-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:01db8ac7-1381-5529-8435-c49bf2f4b032", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-transport-native-unix-common 4.1.58.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cdc166e0-e198-5a4c-a349-8643d9aa0270", "id": "CVE-2024-29025", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-29025 affects version 4.1.58.Final-tuxcare.1 of io.netty:netty-transport-native-unix-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:53f2721c-9fb5-58a1-b908-0d67d87ee503", "id": "CVE-2024-47535", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-47535 affects version 4.1.58.Final-tuxcare.1 of io.netty:netty-transport-native-unix-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:be33c034-ef12-58db-8142-e0430e4bbd3b", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.58.Final-tuxcare.1 of io.netty:netty-transport-native-unix-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:29c8a49a-ccc0-5bf6-a3c1-636958b13824", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.58.Final-tuxcare.1 of io.netty:netty-transport-native-unix-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4af95539-6f3f-53e7-8e40-eb1e732ecd0c", "id": "CVE-2025-55163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55163 affects version 4.1.58.Final-tuxcare.1 of io.netty:netty-transport-native-unix-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2df8a541-25aa-5446-8c4c-85f021e907d5", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.58.Final-tuxcare.1 of io.netty:netty-transport-native-unix-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:016eb892-f648-58c6-81ed-ed2625018831", "id": "CVE-2025-58057", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58057 affects version 4.1.58.Final-tuxcare.1 of io.netty:netty-transport-native-unix-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8e0aaf7e-b2a4-545c-85d1-ba7f7c9698b0", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.58.Final-tuxcare.1 of io.netty:netty-transport-native-unix-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b89d5536-e8c6-5835-917c-f88032e0bc3b", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.58.Final-tuxcare.1 of io.netty:netty-transport-native-unix-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c8b44eb5-6346-5a14-9a45-e3fa02400d2b", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.58.Final-tuxcare.1 of io.netty:netty-transport-native-unix-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:106bfcae-9717-5668-8098-621ef3f2b8ca", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.58.Final-tuxcare.1 of io.netty:netty-transport-native-unix-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:43bacd60-effe-5582-91a8-de46b760cd4b", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.58.Final-tuxcare.1 of io.netty:netty-transport-native-unix-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common@4.1.58.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common@4.1.58.Final-tuxcare.1" } ] }