{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:bedd5dd6-faaf-5afa-a61b-08f85497a781", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.58.Final-tuxcare.2", "type": "library", "group": "io.netty", "name": "netty-codec-stomp", "version": "4.1.58.Final-tuxcare.2", "purl": "pkg:maven/io.netty/netty-codec-stomp@4.1.58.Final-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:4d3a5609-397b-575e-b2a8-71cb761c8374", "id": "CVE-2021-21290", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-21290 is fixed in version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4acab8ed-846e-54c7-9466-1e6b0a40f59a", "id": "CVE-2021-21295", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-21295 is fixed in version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c17a8f59-6f1d-57ba-bd1f-220545438346", "id": "CVE-2021-21409", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-21409 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:140020dc-7635-5af5-bc4b-01c70ee3ad54", "id": "CVE-2021-37136", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37136 is fixed in version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:127ededd-0d0c-54af-9e3f-097c01d524bf", "id": "CVE-2021-43797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-43797 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:20a6424f-9072-53a2-b2db-2dcaa2087d8f", "id": "CVE-2022-24823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24823 is fixed in version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c969cbe1-ecfc-5cf8-8916-49b1daf399a8", "id": "CVE-2022-41881", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41881 is fixed in version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d0e2528b-5cb8-54d3-acd9-7ff11ed47f9e", "id": "CVE-2023-34462", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34462 is fixed in version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:639f713d-e259-5db9-b105-22f593f2d314", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3d840c70-5a2d-520d-b249-8d634c305cd2", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-codec-stomp 4.1.58.Final-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:afc4c1d6-cba1-5d11-8be7-39fd23b7fed6", "id": "CVE-2024-29025", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-29025 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:73371821-53a2-5605-bc46-42289838c9a8", "id": "CVE-2024-47535", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47535 is fixed in version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a484c8b9-bb0e-59af-a4fd-a8ff0d06bc19", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6f95443f-4809-51c0-b3aa-cf86b8a4c63a", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ce9e1e50-b5eb-51f0-ac05-c4d22a3e3dd8", "id": "CVE-2025-55163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55163 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6c3f160a-6feb-5b83-a167-09c20b6c312d", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:120993db-3e6b-55e2-9aad-36f7fe0328e5", "id": "CVE-2025-58057", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58057 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9b41b56f-673d-5b88-849e-c8bc2199e9dd", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e5bfa821-d5c2-5811-88ec-1bb3b159c414", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:acee44f2-453f-5329-ac35-32dc2ea14d6b", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e43ee1f6-75d2-52c6-aea8-9120366de020", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b854dde1-0254-518a-ba39-1ea43164f126", "id": "CVE-2026-41417", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41417 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a69bdf21-399a-579e-a2e0-2b2d8c677ebb", "id": "CVE-2026-42577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42577 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:008a1e55-cb5f-5978-922e-2897846b134e", "id": "CVE-2026-42578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42578 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:41075062-39da-59e4-84f9-8e8dbac31f56", "id": "CVE-2026-42579", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42579 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b6698c1c-f142-5116-b4bd-2bb6f2e9bae9", "id": "CVE-2026-42580", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42580 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c428532c-554c-510b-ac3b-39c24d085dac", "id": "CVE-2026-42581", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42581 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6084af41-502f-541e-9346-d7f851d963ea", "id": "CVE-2026-42584", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42584 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:579b6710-50b6-5075-8abf-0057e9d3cfe9", "id": "CVE-2026-42585", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42585 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b8715df2-445b-5dbb-b30c-e1e2aaf99b35", "id": "CVE-2026-42586", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42586 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b8d69ed7-6ed1-53fe-b4c9-6dfe7d75dad7", "id": "CVE-2026-42587", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42587 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c97b4cc6-a1b3-5912-878f-52a05f082667", "id": "CVE-2026-44248", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44248 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c6bfec48-2d06-5a56-bf20-269709cad952", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.58.Final-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.58.Final-tuxcare.2" } ] }