{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:0d73c8b1-cd60-5771-aff1-32b9da1fdb27", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-transport@4.1.73.Final-tuxcare.1", "type": "library", "group": "io.netty", "name": "netty-transport", "version": "4.1.73.Final-tuxcare.1", "purl": "pkg:maven/io.netty/netty-transport@4.1.73.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:c5a66b53-9720-54cc-b43d-1ee41fb676b8", "id": "CVE-2022-24823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24823 is fixed in version 4.1.73.Final-tuxcare.1 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:23e84086-8974-5b95-b08a-3d4ad6208430", "id": "CVE-2022-41881", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41881 is fixed in version 4.1.73.Final-tuxcare.1 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9d6eaec1-f3d4-5f61-93b0-8b40d324a2cf", "id": "CVE-2022-41915", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-41915 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9e8b272e-fef1-5574-b433-cb27ee0bcf1e", "id": "CVE-2023-34462", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-34462 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9bcd67ba-45f9-562e-b7de-cda6e3024def", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.73.Final-tuxcare.1 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b33c3eaf-e80f-5738-9de0-58e9c79a9671", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-transport 4.1.73.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3bb6d891-a6d2-587f-b6e9-122f39c66e69", "id": "CVE-2024-29025", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-29025 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2857b116-8eb8-57e6-8df9-1318ec19db13", "id": "CVE-2024-47535", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47535 is fixed in version 4.1.73.Final-tuxcare.1 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2d98b290-8d48-5811-9607-49a5e5fcd99b", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.73.Final-tuxcare.1 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:db2024ee-7cef-596a-8236-c5d3ed2aa806", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6cb65b01-6377-53e1-b45b-b32725f15e7e", "id": "CVE-2025-55163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55163 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3fca4b4c-f365-559a-ab92-2ef3bd677ed1", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4f3441d3-fa1a-529c-98eb-c2751bef294a", "id": "CVE-2025-58057", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58057 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f0b13f5c-9eab-54d0-8446-bdd0584e697a", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.73.Final-tuxcare.1 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:13237201-cd73-599a-bdd0-48dafbe2226f", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2c4678c1-01f1-5363-b4df-e9b6c05c3dba", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c472e3ff-0bc1-59d6-942b-5622c33b253f", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ecaff955-bb49-5828-8b29-fad99ebe965e", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.73.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.73.Final-tuxcare.1" } ] }