{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:b729fc12-bb55-590d-b7a0-98f754fdb4d6", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.projectreactor.netty/reactor-netty-http-brave@1.0.32-tuxcare.1", "type": "library", "group": "io.projectreactor.netty", "name": "reactor-netty-http-brave", "version": "1.0.32-tuxcare.1", "purl": "pkg:maven/io.projectreactor.netty/reactor-netty-http-brave@1.0.32-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:eebc82da-5816-5490-b4a4-f928149cbf7b", "id": "CVE-2021-22929", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-22929 is a false positive for io.projectreactor.netty:reactor-netty-http-brave 1.0.32-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/io.projectreactor.netty/reactor-netty-http-brave@1.0.32-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2c90f0f2-b6c2-5f94-ab8b-ec9b8e8746fa", "id": "CVE-2022-30334", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-30334 is a false positive for io.projectreactor.netty:reactor-netty-http-brave 1.0.32-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/io.projectreactor.netty/reactor-netty-http-brave@1.0.32-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d39df986-bbf5-57f6-94dc-5881eb237522", "id": "CVE-2022-47932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-47932 is a false positive for io.projectreactor.netty:reactor-netty-http-brave 1.0.32-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/io.projectreactor.netty/reactor-netty-http-brave@1.0.32-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5ac3f205-2cb5-5142-bb56-37b270416bf4", "id": "CVE-2022-47933", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-47933 is a false positive for io.projectreactor.netty:reactor-netty-http-brave 1.0.32-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/io.projectreactor.netty/reactor-netty-http-brave@1.0.32-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:64c96e1d-027c-5d91-ae0a-32b7c915a570", "id": "CVE-2022-47934", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-47934 is a false positive for io.projectreactor.netty:reactor-netty-http-brave 1.0.32-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/io.projectreactor.netty/reactor-netty-http-brave@1.0.32-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4e76ee64-4f77-5cf7-bd0d-8a1b8f94f34a", "id": "CVE-2023-28360", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-28360 is a false positive for io.projectreactor.netty:reactor-netty-http-brave 1.0.32-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/io.projectreactor.netty/reactor-netty-http-brave@1.0.32-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2a292f66-f9cc-57bb-bbf5-8e68c19770f6", "id": "CVE-2023-34054", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34054 is fixed in version 1.0.32-tuxcare.1 of io.projectreactor.netty:reactor-netty-http-brave." }, "affects": [ { "ref": "pkg:maven/io.projectreactor.netty/reactor-netty-http-brave@1.0.32-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4aca825f-fac9-549c-a6cb-d3386375d8c7", "id": "CVE-2023-34062", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34062 is fixed in version 1.0.32-tuxcare.1 of io.projectreactor.netty:reactor-netty-http-brave." }, "affects": [ { "ref": "pkg:maven/io.projectreactor.netty/reactor-netty-http-brave@1.0.32-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:38cda3a6-5dcd-5d3f-b7e3-1bbbf9f6ee7c", "id": "CVE-2025-22227", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22227 affects version 1.0.32-tuxcare.1 of io.projectreactor.netty:reactor-netty-http-brave." }, "affects": [ { "ref": "pkg:maven/io.projectreactor.netty/reactor-netty-http-brave@1.0.32-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.projectreactor.netty/reactor-netty-http-brave@1.0.32-tuxcare.1" } ] }