{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:00e1706b-e29b-58ea-875f-fc12644f7f59", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-transport-native-unix-common@4.1.73.Final-tuxcare.1", "type": "library", "group": "io.netty", "name": "netty-transport-native-unix-common", "version": "4.1.73.Final-tuxcare.1", "purl": "pkg:maven/io.netty/netty-transport-native-unix-common@4.1.73.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:d5e72610-76e0-58e5-9934-7df16af1af26", "id": "CVE-2022-24823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24823 is fixed in version 4.1.73.Final-tuxcare.1 of io.netty:netty-transport-native-unix-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:be4eb5d7-b621-5520-8992-9f17aa9bca43", "id": "CVE-2022-41881", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41881 is fixed in version 4.1.73.Final-tuxcare.1 of io.netty:netty-transport-native-unix-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:108d3f7b-c72e-53e4-abb7-e284b3aa34e9", "id": "CVE-2022-41915", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-41915 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-transport-native-unix-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e93262ed-db38-5a22-b174-a067e4dabf44", "id": "CVE-2023-34462", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-34462 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-transport-native-unix-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:039f54f1-71e3-563a-a171-6c6a37280bfe", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.73.Final-tuxcare.1 of io.netty:netty-transport-native-unix-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:18b94986-1c3f-5682-a4fc-71f50c3b7e4d", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-transport-native-unix-common 4.1.73.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e048c893-56be-5e0e-b940-99b42dc76b4f", "id": "CVE-2024-29025", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-29025 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-transport-native-unix-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7075e865-f358-5720-af2d-cfe73c033007", "id": "CVE-2024-47535", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47535 is fixed in version 4.1.73.Final-tuxcare.1 of io.netty:netty-transport-native-unix-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c086a648-3b21-57eb-b31a-da2a115b605e", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.73.Final-tuxcare.1 of io.netty:netty-transport-native-unix-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1a0e0d6c-f9d6-53fc-a0ca-4e81b6c9d71b", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-transport-native-unix-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:01a64e95-c99a-5c37-a04d-448e54c93906", "id": "CVE-2025-55163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55163 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-transport-native-unix-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ddae58de-696b-572e-aed2-2c1402674e80", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-transport-native-unix-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:546bed33-9bc1-53b0-8354-74e21dde38ee", "id": "CVE-2025-58057", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58057 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-transport-native-unix-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:152e2fdc-1d7f-5b2a-85ff-301a1bb6bbe0", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.73.Final-tuxcare.1 of io.netty:netty-transport-native-unix-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:808c4c3e-78ff-5323-b088-7b5f58cfa8ab", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-transport-native-unix-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:474aa78e-0e19-561e-8856-cbf7fcc5d507", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-transport-native-unix-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:903f40cb-d774-5ec8-8dab-390d2984f28d", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-transport-native-unix-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f7ad3d6b-7546-5ef5-9b78-9e1221662ab3", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-transport-native-unix-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common@4.1.73.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-transport-native-unix-common@4.1.73.Final-tuxcare.1" } ] }