{
  "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json",
  "bomFormat": "CycloneDX",
  "specVersion": "1.6",
  "serialNumber": "urn:uuid:42831d41-496e-5162-9956-8bc3fd51adf9",
  "version": 1,
  "metadata": {
    "tools": [
      {
        "name": "tuxcare-vex-generator",
        "version": "1.0.0"
      }
    ]
  },
  "components": [
    {
      "bom-ref": "pkg:maven/io.projectreactor.netty/reactor-netty-http@1.0.23-tuxcare.1",
      "type": "library",
      "group": "io.projectreactor.netty",
      "name": "reactor-netty-http",
      "version": "1.0.23-tuxcare.1",
      "purl": "pkg:maven/io.projectreactor.netty/reactor-netty-http@1.0.23-tuxcare.1"
    }
  ],
  "vulnerabilities": [
    {
      "bom-ref": "urn:uuid:171b1c6b-6462-577f-9b01-68a7f917d32d",
      "id": "CVE-2021-22929",
      "analysis": {
        "state": "false_positive",
        "detail": "Vulnerability CVE-2021-22929 is a false positive for io.projectreactor.netty:reactor-netty-http 1.0.23-tuxcare.1."
      },
      "affects": [
        {
          "ref": "pkg:maven/io.projectreactor.netty/reactor-netty-http@1.0.23-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:1c5af917-ac9f-555b-9ad6-93967e189a1c",
      "id": "CVE-2022-30334",
      "analysis": {
        "state": "false_positive",
        "detail": "Vulnerability CVE-2022-30334 is a false positive for io.projectreactor.netty:reactor-netty-http 1.0.23-tuxcare.1."
      },
      "affects": [
        {
          "ref": "pkg:maven/io.projectreactor.netty/reactor-netty-http@1.0.23-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:a8ed2a40-c945-5fb3-8f41-5e2e30469835",
      "id": "CVE-2022-31684",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2022-31684 is fixed in version 1.0.23-tuxcare.1 of io.projectreactor.netty:reactor-netty-http."
      },
      "affects": [
        {
          "ref": "pkg:maven/io.projectreactor.netty/reactor-netty-http@1.0.23-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:e48b137c-0b58-5c25-b738-ca279c876ec9",
      "id": "CVE-2022-47932",
      "analysis": {
        "state": "false_positive",
        "detail": "Vulnerability CVE-2022-47932 is a false positive for io.projectreactor.netty:reactor-netty-http 1.0.23-tuxcare.1."
      },
      "affects": [
        {
          "ref": "pkg:maven/io.projectreactor.netty/reactor-netty-http@1.0.23-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:a289646f-61b0-5ec7-90e9-a0d20664f583",
      "id": "CVE-2022-47933",
      "analysis": {
        "state": "false_positive",
        "detail": "Vulnerability CVE-2022-47933 is a false positive for io.projectreactor.netty:reactor-netty-http 1.0.23-tuxcare.1."
      },
      "affects": [
        {
          "ref": "pkg:maven/io.projectreactor.netty/reactor-netty-http@1.0.23-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:30da8ec9-2c27-59fa-96ad-580d673ea708",
      "id": "CVE-2022-47934",
      "analysis": {
        "state": "false_positive",
        "detail": "Vulnerability CVE-2022-47934 is a false positive for io.projectreactor.netty:reactor-netty-http 1.0.23-tuxcare.1."
      },
      "affects": [
        {
          "ref": "pkg:maven/io.projectreactor.netty/reactor-netty-http@1.0.23-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:d06cfbc4-c01c-502b-83ca-88d992b758cf",
      "id": "CVE-2023-28360",
      "analysis": {
        "state": "false_positive",
        "detail": "Vulnerability CVE-2023-28360 is a false positive for io.projectreactor.netty:reactor-netty-http 1.0.23-tuxcare.1."
      },
      "affects": [
        {
          "ref": "pkg:maven/io.projectreactor.netty/reactor-netty-http@1.0.23-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:62256330-4218-5777-a557-2b5c1a3ff887",
      "id": "CVE-2023-34054",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2023-34054 is fixed in version 1.0.23-tuxcare.1 of io.projectreactor.netty:reactor-netty-http."
      },
      "affects": [
        {
          "ref": "pkg:maven/io.projectreactor.netty/reactor-netty-http@1.0.23-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:2c485a9c-eadc-5ada-84d9-cadfce4b635c",
      "id": "CVE-2023-34062",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2023-34062 is fixed in version 1.0.23-tuxcare.1 of io.projectreactor.netty:reactor-netty-http."
      },
      "affects": [
        {
          "ref": "pkg:maven/io.projectreactor.netty/reactor-netty-http@1.0.23-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:75726ba0-24c5-5b4d-9df6-37f7542e2b86",
      "id": "CVE-2025-22227",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2025-22227 is fixed in version 1.0.23-tuxcare.1 of io.projectreactor.netty:reactor-netty-http."
      },
      "affects": [
        {
          "ref": "pkg:maven/io.projectreactor.netty/reactor-netty-http@1.0.23-tuxcare.1"
        }
      ]
    }
  ],
  "dependencies": [
    {
      "ref": "pkg:maven/io.projectreactor.netty/reactor-netty-http@1.0.23-tuxcare.1"
    }
  ]
}