{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:0f65f42b-f76a-5fd5-a8a0-67700bc6283a", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.2", "type": "library", "group": "io.netty", "name": "netty-transport", "version": "4.1.63.Final-tuxcare.2", "purl": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:453ed99c-769d-5b4d-9912-833eceb5ce03", "id": "CVE-2021-37136", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37136 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:30969c41-adb7-523b-b58e-8f4a2830033b", "id": "CVE-2021-37137", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37137 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:37e40e40-59ee-59aa-9334-32b0dcc1f27a", "id": "CVE-2021-43797", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-43797 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:28625086-697b-5cab-9f7c-15ad6ffd9480", "id": "CVE-2022-24823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24823 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e659590c-aac8-5476-96d1-cd0a6f37d38e", "id": "CVE-2022-41881", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41881 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d7cdfe9a-3b6c-5ab2-8c0c-1921b9def995", "id": "CVE-2022-41915", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41915 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:acd73e9d-ae64-5b64-8dab-ac44a76c5291", "id": "CVE-2023-34462", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34462 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7525ca93-a24c-5e31-935e-bb6c3d2bf7bd", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:382aadbb-7105-592e-90c6-f89be341a5b7", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-transport 4.1.63.Final-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:90a50856-eb63-51d4-b534-d12dd276705a", "id": "CVE-2024-29025", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-29025 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d0209b3e-51cc-52f1-aacd-bf4c7b0caca8", "id": "CVE-2024-47535", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47535 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6b30e775-edc2-551f-aea0-7c24e5941d74", "id": "CVE-2025-24970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24970 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:50a7f6f3-b9af-5b61-a763-3fb8d769ca76", "id": "CVE-2025-25193", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-25193 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:74ce0fae-54cf-5f0e-bd74-4d6960d05fb0", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:86970077-f663-5e77-aa82-7ae8f8cef1ab", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6b0a275c-e108-531f-8c3b-0d2f1bd99376", "id": "CVE-2025-58057", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58057 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b71fb0df-4240-5efd-8677-b13cd65684f6", "id": "CVE-2025-59419", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59419 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e9456a0c-0def-53fc-bb02-8bc3a17c95fd", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fe2a5a03-e781-57ba-970b-e583f57c2413", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:aa9b68e5-12c6-5e5e-8dfc-1a4cf293ef06", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9755d156-9b99-5c36-bc21-5e938912d5da", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.2" } ] }