{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:7cf23002-8370-5834-8e48-8af06bc3a936", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.3", "type": "library", "group": "io.netty", "name": "netty-transport", "version": "4.1.63.Final-tuxcare.3", "purl": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:5ecc55f9-0576-5910-a22a-b4500591c06e", "id": "CVE-2021-37136", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37136 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4acd0cbe-a028-5fe6-b6b9-f58281d62cb3", "id": "CVE-2021-37137", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37137 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:66eaadc9-baef-5add-bd47-7bca45f70d49", "id": "CVE-2021-43797", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-43797 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c6628045-0ba5-5a4a-b9e1-5998c2afd91a", "id": "CVE-2022-24823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24823 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:42751a0b-bd6a-5dc5-b1aa-33af3eb10412", "id": "CVE-2022-41881", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41881 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:54e9dee0-73da-569a-a1a7-8ce8841875b6", "id": "CVE-2022-41915", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41915 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:80738524-8045-5e7e-901d-268a2b5d4c80", "id": "CVE-2023-34462", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34462 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d496414c-81e2-5f92-b9f5-24de59d9ddd7", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f6418c73-4465-5afa-bedf-81cd4c293cfc", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-transport 4.1.63.Final-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b2627c56-c967-590f-927a-5cf36c4d9b2f", "id": "CVE-2024-29025", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-29025 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6d5ae39c-49cd-5e08-aee6-05ba185f0ce2", "id": "CVE-2024-47535", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47535 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:69b1415c-e644-5065-83b3-4c6fea95df0e", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:35fe3c91-c7bd-5013-b98d-17f8fc7b730a", "id": "CVE-2025-25193", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-25193 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:16946a39-e5cd-5c15-967a-0182bb0c299a", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f36da293-3352-57c5-8523-80fcd336e4ce", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:17a58198-de34-5a8f-bcea-bf80cfe75cb6", "id": "CVE-2025-58057", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58057 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a904bb35-2cfd-583e-adc3-5b16029a7432", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:694872b8-ff10-5788-b1ea-05bfa9dd40e4", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:56b184ec-4435-500c-b4e8-15b994278023", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6daa5a24-24a4-507f-a286-8d88989d3f1f", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8b3ed63a-88dc-504c-b71c-c8709e938d9b", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.3" } ] }