{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:b7b85b00-48c8-5848-b6f1-cdf1d5004bc6", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-codec-memcache@4.1.58.Final-tuxcare.2", "type": "library", "group": "io.netty", "name": "netty-codec-memcache", "version": "4.1.58.Final-tuxcare.2", "purl": "pkg:maven/io.netty/netty-codec-memcache@4.1.58.Final-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:2435bf66-2073-5f3e-94eb-8e038123c945", "id": "CVE-2021-21290", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-21290 is fixed in version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-memcache." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-memcache@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c150c17a-3522-5a2e-9d6c-0676ca5ece6d", "id": "CVE-2021-21295", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-21295 is fixed in version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-memcache." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-memcache@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:944e0502-776e-5d32-a985-37b4af032d9d", "id": "CVE-2021-21409", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-21409 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-memcache." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-memcache@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b00e884f-4b1b-5075-b399-b834a6483c2f", "id": "CVE-2021-37136", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37136 is fixed in version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-memcache." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-memcache@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fde1d4bb-9518-5f2a-99cd-87f40f85a825", "id": "CVE-2021-43797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-43797 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-memcache." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-memcache@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d4882735-3772-5619-9702-948b47e3ea60", "id": "CVE-2022-24823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24823 is fixed in version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-memcache." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-memcache@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1aafb098-e956-575d-9e16-d1dc2166729a", "id": "CVE-2022-41881", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41881 is fixed in version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-memcache." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-memcache@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a42da70d-968c-52c5-9aa2-01d394e1995f", "id": "CVE-2023-34462", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34462 is fixed in version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-memcache." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-memcache@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6338745b-dc85-518c-bb75-2c6e9afaadc6", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-memcache." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-memcache@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:abe89390-3f54-5531-a0ba-0787f32e2be0", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-codec-memcache 4.1.58.Final-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-memcache@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a88b420a-9bb1-575e-a4c3-772712002cb7", "id": "CVE-2024-29025", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-29025 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-memcache." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-memcache@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8ae8aefb-3423-5ae7-b22b-3ce0ed2d5263", "id": "CVE-2024-47535", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47535 is fixed in version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-memcache." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-memcache@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8a537c2f-ddba-52b9-9092-a000a349ad40", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-memcache." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-memcache@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:958ddfb3-6698-59e7-ab1c-de9df9a280d7", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-memcache." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-memcache@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:61deb69c-cffc-5ed7-86df-379562e21c37", "id": "CVE-2025-55163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55163 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-memcache." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-memcache@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2eb1d60d-5057-5cc6-b60b-9076ef11814c", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-memcache." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-memcache@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:30230a60-650f-5823-9d8c-959a197f3265", "id": "CVE-2025-58057", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58057 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-memcache." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-memcache@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2766303c-ae1d-5866-9e9e-6df8f80824a4", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-memcache." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-memcache@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:71373942-c6d6-5297-b697-3b80778e000d", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-memcache." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-memcache@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bdc49854-3136-5bb7-a063-4809b29f5ed7", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-memcache." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-memcache@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:646171ae-3b82-5e90-a127-3ff3d097dd73", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-memcache." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-memcache@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e196dba6-a14c-50f0-8cdf-def6e9ed0fb1", "id": "CVE-2026-41417", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41417 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-memcache." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-memcache@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3761d200-5bd9-5ab5-bead-2a427cdd6ee4", "id": "CVE-2026-42577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42577 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-memcache." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-memcache@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d18dbf12-4702-5cb4-b3cb-c7cf7ea532a0", "id": "CVE-2026-42578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42578 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-memcache." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-memcache@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1f7f8bdb-c1f9-5bfe-be39-311a41d1010d", "id": "CVE-2026-42579", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42579 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-memcache." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-memcache@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b4845cff-a27a-5a30-a4a7-28410c244fa5", "id": "CVE-2026-42580", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42580 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-memcache." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-memcache@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2af329c3-1085-59b3-9d26-39a64a7084f8", "id": "CVE-2026-42581", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42581 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-memcache." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-memcache@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b76b6a10-eb97-596f-87e7-add1cbea3f14", "id": "CVE-2026-42584", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42584 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-memcache." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-memcache@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:89bbc05c-587f-5972-b2a3-147f6b12ae81", "id": "CVE-2026-42585", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42585 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-memcache." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-memcache@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0fd92d02-aa34-5188-ac51-10888603d45d", "id": "CVE-2026-42586", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42586 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-memcache." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-memcache@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1664eb19-86e8-5da6-bbd1-9c732a3b9ff7", "id": "CVE-2026-42587", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42587 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-memcache." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-memcache@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:56f4cfd8-d218-51a3-9ca6-5808c35c7c24", "id": "CVE-2026-44248", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44248 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-memcache." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-memcache@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:636624e1-1276-5eed-83fb-e80fff988528", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-memcache." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-memcache@4.1.58.Final-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-codec-memcache@4.1.58.Final-tuxcare.2" } ] }