{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:7218a636-7d88-5773-b868-4a2b85ea5c44", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-bom@4.1.52.Final-tuxcare.2", "type": "library", "group": "io.netty", "name": "netty-bom", "version": "4.1.52.Final-tuxcare.2", "purl": "pkg:maven/io.netty/netty-bom@4.1.52.Final-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:19b4f0ed-b6d7-5cf5-b74f-ffa7058dc63f", "id": "CVE-2021-21290", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-21290 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8bb2c424-9033-51dd-ab29-2e572d06b39d", "id": "CVE-2021-21295", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-21295 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:04924086-a7b1-5c17-a0c1-cffa2c8892ce", "id": "CVE-2021-21409", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-21409 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:93f6b477-9248-5d0e-9c65-25dc95caba36", "id": "CVE-2021-37136", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37136 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9b3ccd7a-468f-5522-b3e6-2e8ffe0c02c3", "id": "CVE-2021-37137", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37137 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7bcde86c-1a55-567b-9598-c8344a2d1660", "id": "CVE-2021-43797", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-43797 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:37a15a25-4619-50b6-b5a0-f29200590c49", "id": "CVE-2022-24823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24823 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bcd723a8-ef0f-54cb-a6d9-294a3f8e8af0", "id": "CVE-2022-41881", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41881 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:88658b02-bed0-5a55-98df-9e5ec19ab889", "id": "CVE-2023-34462", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34462 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:13b658df-552d-5fad-8e6c-0954b9791e76", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ba49b61a-6dbd-5916-970c-9bbdf31cf854", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-bom 4.1.52.Final-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:52f01712-91b8-51f2-9995-0538e46a643c", "id": "CVE-2024-29025", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-29025 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3741cea7-0f61-524e-b2f6-c752ebdae6d4", "id": "CVE-2024-47535", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47535 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:40a18ac3-bef3-5f42-bc37-1de29632c3dc", "id": "CVE-2025-24970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24970 affects version 4.1.52.Final-tuxcare.2 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a7ae1021-d5bc-5afa-a532-6e0ceef110bc", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.52.Final-tuxcare.2 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b7c63e49-7826-5b42-90bc-c684e4fca73f", "id": "CVE-2025-55163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55163 affects version 4.1.52.Final-tuxcare.2 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ec5e6ca6-c0a9-5a6c-a313-24738d0a508b", "id": "CVE-2025-58056", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58056 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3e418bca-69c8-5c77-891f-3a19eeee3b3a", "id": "CVE-2025-58057", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58057 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9e298e42-0a08-5150-ac72-877e14fca0bd", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:506aef66-4228-5373-94c3-bf20c75754b7", "id": "CVE-2025-67735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-67735 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4cdbb7f6-d467-546b-85e6-8c9de98af2c6", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.52.Final-tuxcare.2 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1321878f-a601-5275-8c89-26503c9a28d9", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.52.Final-tuxcare.2 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c32c23c9-c928-50be-8e1c-54db6716d2a1", "id": "CVE-2026-41417", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41417 affects version 4.1.52.Final-tuxcare.2 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:02b67321-5249-56aa-9a1c-e47da9bee25e", "id": "CVE-2026-42577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42577 affects version 4.1.52.Final-tuxcare.2 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:df630748-38af-5e98-a44e-8ef01ce64073", "id": "CVE-2026-42578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42578 affects version 4.1.52.Final-tuxcare.2 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:19e51c49-14fb-589c-9f8d-f62486607116", "id": "CVE-2026-42579", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42579 affects version 4.1.52.Final-tuxcare.2 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9177bf01-7002-5dbe-a56c-7e3a978b0f9a", "id": "CVE-2026-42580", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42580 affects version 4.1.52.Final-tuxcare.2 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c8534d60-e76a-583a-b9b7-25822f2c69bc", "id": "CVE-2026-42581", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42581 affects version 4.1.52.Final-tuxcare.2 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e6e6ac44-52c7-54c9-a7aa-2de445764249", "id": "CVE-2026-42584", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42584 affects version 4.1.52.Final-tuxcare.2 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4e5affd8-8e1a-5625-9a69-dc762413e712", "id": "CVE-2026-42585", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42585 affects version 4.1.52.Final-tuxcare.2 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5ad093a0-0acf-5514-86cc-6090a7622fa7", "id": "CVE-2026-42586", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42586 affects version 4.1.52.Final-tuxcare.2 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e8e80068-5772-5efc-ab93-334ead59fe01", "id": "CVE-2026-42587", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42587 affects version 4.1.52.Final-tuxcare.2 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3aa514fb-b765-50b9-86d3-27b546b4df75", "id": "CVE-2026-44248", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44248 affects version 4.1.52.Final-tuxcare.2 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b0f04076-5721-5144-addc-fe83e14096b9", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "resolved", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.52.Final-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.52.Final-tuxcare.2" } ] }