{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:56997013-e9b0-5e5b-b599-642fe3d0c32b", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-transport-sctp@4.1.63.Final-tuxcare.3", "type": "library", "group": "io.netty", "name": "netty-transport-sctp", "version": "4.1.63.Final-tuxcare.3", "purl": "pkg:maven/io.netty/netty-transport-sctp@4.1.63.Final-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:e2388e8c-7041-5164-955c-a861c0b99032", "id": "CVE-2021-37136", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37136 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport-sctp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-sctp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:911e8ffc-90d5-5007-bca9-69e8eb22636b", "id": "CVE-2021-37137", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37137 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport-sctp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-sctp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2c826f24-b3ec-593d-b6d1-d406809258f2", "id": "CVE-2021-43797", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-43797 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport-sctp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-sctp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ddd6e74d-eae4-5273-b3a3-f7836edbfd44", "id": "CVE-2022-24823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24823 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport-sctp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-sctp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6de9e7bd-c2de-5989-9089-cb83c34c21a3", "id": "CVE-2022-41881", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41881 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport-sctp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-sctp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e745e66a-2c73-5fba-b28f-9c1cbd162a05", "id": "CVE-2022-41915", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41915 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport-sctp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-sctp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:74e95a6a-77a6-5f0f-88ad-c097512fa101", "id": "CVE-2023-34462", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34462 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport-sctp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-sctp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2dfa9452-f01f-5f47-8308-7043d5092a6e", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport-sctp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-sctp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f3cb00db-b82b-520e-88cc-bab85aaa1347", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-transport-sctp 4.1.63.Final-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-sctp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:481bb161-3a1c-5650-bbd8-9b0d9cdaa92b", "id": "CVE-2024-29025", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-29025 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport-sctp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-sctp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ed4d9218-2a9d-5197-90c4-d61ba90a1d48", "id": "CVE-2024-47535", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47535 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport-sctp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-sctp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:52481d11-32e0-52d0-a7e6-9503599151b0", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport-sctp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-sctp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:463f6899-1757-52e3-b749-3b88ed45bc2f", "id": "CVE-2025-25193", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-25193 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport-sctp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-sctp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:641fac06-7703-5910-8d58-50b83db0a6d2", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport-sctp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-sctp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7f1c2f95-9ddd-5cea-9384-cb3a35332114", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport-sctp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-sctp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0ba52524-1c5a-5f3f-8bb3-b66eccedd23a", "id": "CVE-2025-58057", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58057 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport-sctp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-sctp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:789e471d-5e36-5461-b11c-cdeba6c38e37", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport-sctp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-sctp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d2741de3-c6b0-5582-8e97-5f3fb9e8cd8e", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport-sctp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-sctp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d5c18c75-7ce5-57ab-b960-486078a78d07", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport-sctp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-sctp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:025ceeeb-d839-5b3b-b9b9-9abe9652c90a", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport-sctp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-sctp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ac8e4523-363b-50d9-98d2-b7da9d79957d", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport-sctp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-sctp@4.1.63.Final-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-transport-sctp@4.1.63.Final-tuxcare.3" } ] }