{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:cac2ad16-f99d-53cd-8a43-ea995bd80567", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-transport-udt@4.1.63.Final-tuxcare.1", "type": "library", "group": "io.netty", "name": "netty-transport-udt", "version": "4.1.63.Final-tuxcare.1", "purl": "pkg:maven/io.netty/netty-transport-udt@4.1.63.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:13f36d95-55c2-5760-a4fa-2378fa47a6b0", "id": "CVE-2021-37136", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37136 is fixed in version 4.1.63.Final-tuxcare.1 of io.netty:netty-transport-udt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-udt@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0f053887-dd19-5d04-892f-f81a3cd6ac4d", "id": "CVE-2021-37137", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-37137 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-transport-udt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-udt@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dee4d9b7-f05b-5b7d-85b2-503bd743495e", "id": "CVE-2021-43797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-43797 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-transport-udt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-udt@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6703483e-d901-5221-a59e-ca0f498a374c", "id": "CVE-2022-24823", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-24823 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-transport-udt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-udt@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:589d03a9-9581-58eb-a5d3-de5020dcea52", "id": "CVE-2022-41881", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-41881 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-transport-udt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-udt@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:221c7fe9-e4cf-5cd4-be3b-70b8ed4eb60b", "id": "CVE-2022-41915", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-41915 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-transport-udt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-udt@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5aa4ad6a-e84e-55d5-9f17-0fa55cd48fed", "id": "CVE-2023-34462", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-34462 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-transport-udt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-udt@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9fb5f09d-be38-5634-ad98-621441d344dc", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-transport-udt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-udt@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cc9d091b-d0e7-5673-aabf-b2abc4c03c43", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-transport-udt 4.1.63.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-udt@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:374f5d6d-c1d6-54bc-8997-4ef8a7feeee7", "id": "CVE-2024-29025", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-29025 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-transport-udt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-udt@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b2a9792f-a120-5753-bb5d-01e18f56f823", "id": "CVE-2024-47535", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-47535 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-transport-udt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-udt@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0de6fc6f-ed0d-5388-bf3a-16e68ea239b2", "id": "CVE-2025-24970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24970 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-transport-udt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-udt@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e28914c1-bbcb-51e5-ac9b-d77b1c7dc1c7", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-transport-udt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-udt@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4ae01988-e641-516a-bc19-58ba3d91004c", "id": "CVE-2025-55163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55163 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-transport-udt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-udt@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:37efed77-cb64-5de4-88b5-3b5eb10fe864", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-transport-udt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-udt@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:054ed0f2-8d4e-5518-af77-eb917a816382", "id": "CVE-2025-58057", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58057 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-transport-udt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-udt@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7a85a649-67ae-50ac-b17b-542c803441b7", "id": "CVE-2025-59419", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59419 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-transport-udt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-udt@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f826c244-22e0-5fb4-845c-3d5e9b33b279", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-transport-udt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-udt@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5caf8cf7-ea61-5eb1-9b01-e92ffebcd894", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-transport-udt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-udt@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d9c58588-35ec-5880-9dac-0de9e80b6bfc", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-transport-udt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-udt@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d2453531-08bf-50ce-b11e-a434db756ba5", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-transport-udt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-udt@4.1.63.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-transport-udt@4.1.63.Final-tuxcare.1" } ] }