{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:b8426472-f115-5e93-851d-c6d92ec67c2e", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-bom@4.1.75.Final-tuxcare.1", "type": "library", "group": "io.netty", "name": "netty-bom", "version": "4.1.75.Final-tuxcare.1", "purl": "pkg:maven/io.netty/netty-bom@4.1.75.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:79e6faaf-dbfb-5861-878f-e5b2d12c29a9", "id": "CVE-2022-24823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24823 is fixed in version 4.1.75.Final-tuxcare.1 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3979ebc9-accc-54c4-8b85-815851b3847c", "id": "CVE-2022-41881", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41881 is fixed in version 4.1.75.Final-tuxcare.1 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d2d305b8-f082-591a-ab16-35ee8a28513c", "id": "CVE-2022-41915", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-41915 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f9241fb6-c7d8-51db-ab95-83abf2fb4c25", "id": "CVE-2023-34462", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34462 is fixed in version 4.1.75.Final-tuxcare.1 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2b911407-7813-5083-b61a-e8443d9be6a0", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.75.Final-tuxcare.1 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:314cbc19-db6c-517a-9f47-9c9a194dea18", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-bom 4.1.75.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8f9faaca-cafe-5b39-a83c-4a88041520dc", "id": "CVE-2024-29025", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-29025 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:68af99fb-b8c4-5ba9-8dae-9414955cbc8d", "id": "CVE-2024-47535", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47535 is fixed in version 4.1.75.Final-tuxcare.1 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9f9bd894-3515-55fb-9b78-79f9df1f9eaf", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.75.Final-tuxcare.1 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:db64bbb2-26ec-57ae-9825-caa63733a0c4", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:308ce186-32e7-5ae4-b2d3-bc5371654f12", "id": "CVE-2025-55163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55163 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ee47f8ef-9d97-5624-872d-8340c760d2bf", "id": "CVE-2025-58056", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58056 is fixed in version 4.1.75.Final-tuxcare.1 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:502f7874-504f-50f6-a86d-785c64168c0b", "id": "CVE-2025-58057", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58057 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4ade0866-5564-5575-b45d-3ae5631c9f80", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.75.Final-tuxcare.1 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0584cfcf-c990-5caa-8488-964d72629954", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5d2dbb95-bb88-582a-8153-3349280db8d1", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ed512af0-a16e-52be-89ba-e3962071ff58", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:50e065e7-c85f-59b9-990c-928f24868748", "id": "CVE-2026-41417", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41417 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5d7b7ffa-b823-58e8-b5f6-37e750f456ae", "id": "CVE-2026-42577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42577 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8143648d-557c-5421-b07b-451bf84939e0", "id": "CVE-2026-42578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42578 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:de1f58a3-eafd-5a69-83a5-571395bf0e55", "id": "CVE-2026-42579", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42579 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ef06eaf7-5db2-55e6-8134-2fb88a257b64", "id": "CVE-2026-42580", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42580 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6dbbe4ef-5384-573c-8c7e-f408becff168", "id": "CVE-2026-42581", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42581 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:49fa1e9f-42fe-5955-b041-949396f1bd86", "id": "CVE-2026-42584", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42584 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d24bed82-967d-5e62-a6ca-69703be6b280", "id": "CVE-2026-42585", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42585 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7457e7a5-8d0b-548d-9a8e-9a0a433ba4ae", "id": "CVE-2026-42586", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42586 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c25bc698-9a54-5bba-975a-7f826eedc02d", "id": "CVE-2026-42587", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42587 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:09ace47e-c036-5fe0-865f-4750779d4b85", "id": "CVE-2026-44248", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44248 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1183ca3e-e50b-5bf3-878b-09915c06e953", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "resolved", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p is fixed in version 4.1.75.Final-tuxcare.1 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.75.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.75.Final-tuxcare.1" } ] }