{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:895f611d-c8fe-527f-a7cd-c2b06169d6a9", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-transport@4.1.112.Final-tuxcare.2", "type": "library", "group": "io.netty", "name": "netty-transport", "version": "4.1.112.Final-tuxcare.2", "purl": "pkg:maven/io.netty/netty-transport@4.1.112.Final-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:93b48b25-cf16-5321-9579-06070f8153b6", "id": "CVE-2024-47535", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-47535 affects version 4.1.112.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.112.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6a34ced4-35af-5028-ba7b-7916910bf1b4", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.112.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.112.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d1589aca-29e2-5f84-b920-f409764f67b0", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.112.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.112.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f1a0f5b5-f7b1-5d9e-b78e-6a41d43814d0", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.112.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.112.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e77f5e69-159a-5fb2-9c2a-4298f0d006bd", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.112.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.112.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:044fc0d6-7174-51bc-9645-21960c620eff", "id": "CVE-2025-58057", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58057 is fixed in version 4.1.112.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.112.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a5961e60-6fa2-5e82-909a-8402042c7286", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.112.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.112.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f2b9d58c-d8b6-570e-a546-e83b9a742b22", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.112.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.112.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2dd61903-c2ee-5d13-956f-dbd82b82d5ff", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.112.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.112.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ef9d8580-9130-5276-adf4-fe47061d3df0", "id": "CVE-2026-33871", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-33871 is fixed in version 4.1.112.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.112.Final-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.112.Final-tuxcare.2" } ] }