{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:e789c65c-4593-518d-b45a-eb54dd0272f8", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.93.Final-tuxcare.1", "type": "library", "group": "io.netty", "name": "netty-transport-rxtx", "version": "4.1.93.Final-tuxcare.1", "purl": "pkg:maven/io.netty/netty-transport-rxtx@4.1.93.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:eaf5e18e-b95d-5186-ac1d-50833072ae0a", "id": "CVE-2023-34462", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34462 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:30f77b70-f575-5a2d-ace9-7ff44b04ecf4", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7b52d3ad-6468-533f-9301-f0dd0e26da22", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-transport-rxtx 4.1.93.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e4811e22-b699-533f-87ae-daee72a30e40", "id": "CVE-2024-29025", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-29025 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:57b9072c-74de-54cf-bff1-b4408b640717", "id": "CVE-2024-47535", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47535 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8b286081-1a97-56fe-bdd6-a495973d750f", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6a6099d5-867f-595b-9bbf-fda9d37007ef", "id": "CVE-2025-25193", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-25193 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9f9257c6-5d75-5c68-bb08-bd4ce8086ec5", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6daca8a2-c44d-51c4-bb03-ce87f9105252", "id": "CVE-2025-58056", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58056 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e4f10bba-4ee8-5f6c-8e61-d02b34015071", "id": "CVE-2025-58057", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58057 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6537c5b3-91a9-51f4-bc57-df573b09c37c", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3c9035a9-15a1-507d-a3ef-12cb07c5509e", "id": "CVE-2025-67735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-67735 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fcea8759-4f2b-58bc-8372-ac0557078062", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.93.Final-tuxcare.1 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3c8d636f-4ffa-5cd8-aefa-58b1538d6b0a", "id": "CVE-2026-33871", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-33871 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a2ce8354-f9a9-5b1f-aae0-c0a025805634", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.93.Final-tuxcare.1 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.93.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.93.Final-tuxcare.1" } ] }