{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:0da72077-eb9a-5a9a-a2f1-a16574e775ad", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-transport@4.1.115.Final-tuxcare.1", "type": "library", "group": "io.netty", "name": "netty-transport", "version": "4.1.115.Final-tuxcare.1", "purl": "pkg:maven/io.netty/netty-transport@4.1.115.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:9365e1c1-8f67-5238-8744-58e22b3f1a1c", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.115.Final-tuxcare.1 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.115.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7cbf3d2d-6f7f-53a1-9b65-65b7fdc4a19f", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.115.Final-tuxcare.1 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.115.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:822b9462-620f-5c26-a09b-4fa9056a167a", "id": "CVE-2025-55163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55163 affects version 4.1.115.Final-tuxcare.1 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.115.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:84323b2b-69b8-5d2e-868c-0eb2f9d977f5", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.115.Final-tuxcare.1 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.115.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a4ada055-c458-565b-be2c-5f80b12e6481", "id": "CVE-2025-58057", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58057 affects version 4.1.115.Final-tuxcare.1 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.115.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:55262e16-9644-53d7-bb19-01401cb3a379", "id": "CVE-2025-59419", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59419 affects version 4.1.115.Final-tuxcare.1 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.115.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:adfe3652-b85c-5984-b058-8bc6f1abdf07", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.115.Final-tuxcare.1 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.115.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5d75aa0f-bbb2-54e9-9b8d-27f69255d9b5", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.115.Final-tuxcare.1 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.115.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1370c21d-9bf3-5c5b-9abe-919d6f061638", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.115.Final-tuxcare.1 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.115.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.115.Final-tuxcare.1" } ] }