{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:71a69ce1-22d8-5d5f-b296-3b91eeacc1e2", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-transport-udt@4.1.63.Final-tuxcare.2", "type": "library", "group": "io.netty", "name": "netty-transport-udt", "version": "4.1.63.Final-tuxcare.2", "purl": "pkg:maven/io.netty/netty-transport-udt@4.1.63.Final-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:e982e03f-388c-50f9-8c07-fd10abb459a6", "id": "CVE-2021-37136", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37136 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport-udt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-udt@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9d5b7847-bc70-521e-86d1-036b1d340131", "id": "CVE-2021-37137", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37137 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport-udt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-udt@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1229dd4c-bd2f-52c0-bda8-2b3fbbc998b9", "id": "CVE-2021-43797", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-43797 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport-udt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-udt@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:40e2bbab-496a-5c59-8b6e-efb9f528fdf7", "id": "CVE-2022-24823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24823 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport-udt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-udt@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7f06c697-a005-5884-85dc-cec221f11a59", "id": "CVE-2022-41881", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41881 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport-udt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-udt@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:73d5b37a-0a16-594c-aa57-3391acad2396", "id": "CVE-2022-41915", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41915 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport-udt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-udt@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d57f2cc3-2957-58e2-9e67-ec21080bfa55", "id": "CVE-2023-34462", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34462 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport-udt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-udt@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2e83248e-bc3e-5dc2-a9b5-0fa21b0f514e", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport-udt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-udt@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:afba1283-4e3e-5def-b9eb-7afa8710e620", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-transport-udt 4.1.63.Final-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-udt@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ca09caa5-a0f9-5156-8d45-78afe9156f9d", "id": "CVE-2024-29025", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-29025 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport-udt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-udt@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c9b4f2fd-dcff-5f19-994f-45eeae7853fc", "id": "CVE-2024-47535", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47535 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport-udt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-udt@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cc252d93-5da0-5b7c-bf8b-c295da7ec60b", "id": "CVE-2025-24970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24970 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport-udt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-udt@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:04ecd219-5824-5e25-aa70-58e040a523fe", "id": "CVE-2025-25193", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-25193 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport-udt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-udt@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1cf6e194-9930-528d-bc63-4878709c8b4a", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport-udt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-udt@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:197edee7-e41e-52b7-973a-08951aad824c", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport-udt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-udt@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ac67856b-b65f-56b5-a9f5-0e1e59aefb40", "id": "CVE-2025-58057", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58057 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport-udt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-udt@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bfba5650-5880-5216-a9e2-7d4af0c1d06c", "id": "CVE-2025-59419", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59419 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport-udt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-udt@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:11f15147-dcfb-5656-8743-3b9c5d2dcc5b", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport-udt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-udt@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c17e0ea3-3474-55a8-9119-1c20d6d8cc73", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport-udt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-udt@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:28c24972-df04-59d7-b3cb-8adfec32e933", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport-udt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-udt@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b035fc77-ca3b-5c52-80c3-da0dd83b1d91", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport-udt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-udt@4.1.63.Final-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-transport-udt@4.1.63.Final-tuxcare.2" } ] }