{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:0afea228-5293-597a-9847-c291be8e666f", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.49.Final-tuxcare.1", "type": "library", "group": "io.netty", "name": "netty-transport-rxtx", "version": "4.1.49.Final-tuxcare.1", "purl": "pkg:maven/io.netty/netty-transport-rxtx@4.1.49.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:2ccd3ac1-7531-593d-abf3-5e0fb35885a2", "id": "CVE-2021-21290", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-21290 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e088108c-b09b-5263-84b8-bf2a5671f7d1", "id": "CVE-2021-21295", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-21295 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1f55a06b-3a06-5337-a931-f837bfa4f4f5", "id": "CVE-2021-21409", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-21409 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5dae2cea-ddd9-5db8-ae37-775c991f47fe", "id": "CVE-2021-37136", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37136 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fd9ed368-66f1-523d-af4e-19ba3f911196", "id": "CVE-2021-37137", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37137 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3f1a9d80-a7bf-59a0-953c-fe6cb7fda045", "id": "CVE-2021-43797", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-43797 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:487c5739-5a87-58c7-89d2-058a4d758dd7", "id": "CVE-2022-24823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24823 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:62abf3ab-09ef-5301-9f40-996f6626b53c", "id": "CVE-2022-41881", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-41881 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7b25dcfa-a5d0-5171-8b4c-92664bec9334", "id": "CVE-2022-41915", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-41915 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5d0adf09-8c89-53a7-918c-4bc4575dabe9", "id": "CVE-2023-34462", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34462 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ba937b2b-ca71-51c3-8c19-af4f15cb7873", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8e54a18f-6c82-5206-8d56-55eb9cc0d747", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-transport-rxtx 4.1.49.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:88dfd262-a914-5ffa-bb35-584e61c49faf", "id": "CVE-2024-29025", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-29025 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:541cf663-eeb0-5b85-9b42-7ad92f2fd94a", "id": "CVE-2024-47535", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-47535 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fe529dd4-ff21-5652-94ee-a4f940f427e1", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c0c160c8-f205-5b78-b91f-08d7959fddc3", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c1d9e318-4862-5c17-af62-452df76fe64b", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c07e97fb-12b9-50eb-94eb-cb2c24010126", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:394772dd-ad32-5f6a-8e21-5be4a331e80e", "id": "CVE-2025-58057", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58057 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e3f13775-34bf-55bb-a653-22999fd291bf", "id": "CVE-2025-59419", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59419 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:165a8462-af84-5fc0-b7e6-63a99ab3f802", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:15b65c64-801d-54f9-ab15-3b9257f3fc3f", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dcd64bc3-06cc-5b58-b8d7-9ef53cbc6058", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:38e25b67-bfe6-5757-9cee-794dae9e97b7", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.49.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.49.Final-tuxcare.1" } ] }