{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:a3372577-74de-5b06-bdbe-54888a9adfb6", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.projectreactor.netty/reactor-netty@1.0.32-tuxcare.1", "type": "library", "group": "io.projectreactor.netty", "name": "reactor-netty", "version": "1.0.32-tuxcare.1", "purl": "pkg:maven/io.projectreactor.netty/reactor-netty@1.0.32-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:3d23abb6-816a-5920-b6a1-aa6e31340cb4", "id": "CVE-2021-22929", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2021-22929 is a false positive for io.projectreactor.netty:reactor-netty 1.0.32-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/io.projectreactor.netty/reactor-netty@1.0.32-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:04cfd16b-507c-5678-a7ec-363c6b95b6a0", "id": "CVE-2022-30334", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-30334 is a false positive for io.projectreactor.netty:reactor-netty 1.0.32-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/io.projectreactor.netty/reactor-netty@1.0.32-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:af274826-667e-561b-9af1-a293e8a81f66", "id": "CVE-2022-47932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-47932 is a false positive for io.projectreactor.netty:reactor-netty 1.0.32-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/io.projectreactor.netty/reactor-netty@1.0.32-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:688834ae-5a4c-5847-aace-93cd7e2441df", "id": "CVE-2022-47933", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-47933 is a false positive for io.projectreactor.netty:reactor-netty 1.0.32-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/io.projectreactor.netty/reactor-netty@1.0.32-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1ad4dcca-b8a3-5180-ad31-1cfcb1a59610", "id": "CVE-2022-47934", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-47934 is a false positive for io.projectreactor.netty:reactor-netty 1.0.32-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/io.projectreactor.netty/reactor-netty@1.0.32-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e67b92fa-c333-54c7-b89c-23dd692ed666", "id": "CVE-2023-28360", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-28360 is a false positive for io.projectreactor.netty:reactor-netty 1.0.32-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/io.projectreactor.netty/reactor-netty@1.0.32-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:588d085e-7fad-54aa-86c3-bf71fb7d4e7c", "id": "CVE-2023-34054", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34054 is fixed in version 1.0.32-tuxcare.1 of io.projectreactor.netty:reactor-netty." }, "affects": [ { "ref": "pkg:maven/io.projectreactor.netty/reactor-netty@1.0.32-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a400398a-29a1-5a61-a49a-1fdf0d7457e6", "id": "CVE-2023-34062", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34062 is fixed in version 1.0.32-tuxcare.1 of io.projectreactor.netty:reactor-netty." }, "affects": [ { "ref": "pkg:maven/io.projectreactor.netty/reactor-netty@1.0.32-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2ac8272d-d72b-5372-aba4-144c8e83200e", "id": "CVE-2025-22227", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-22227 affects version 1.0.32-tuxcare.1 of io.projectreactor.netty:reactor-netty." }, "affects": [ { "ref": "pkg:maven/io.projectreactor.netty/reactor-netty@1.0.32-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.projectreactor.netty/reactor-netty@1.0.32-tuxcare.1" } ] }