{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:8c6526ed-0b77-5744-9bf4-b0140d03d3a9", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.63.Final-tuxcare.3", "type": "library", "group": "io.netty", "name": "netty-codec-stomp", "version": "4.1.63.Final-tuxcare.3", "purl": "pkg:maven/io.netty/netty-codec-stomp@4.1.63.Final-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:d8c5fddb-dfd5-5a8d-8bdc-32c45ffda405", "id": "CVE-2021-37136", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37136 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:92f9f53f-e4e4-5029-8d3a-236fee1f2e9a", "id": "CVE-2021-37137", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37137 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:414c7a40-935a-5257-9f87-b9ced18a1d57", "id": "CVE-2021-43797", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-43797 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:93da4a74-3184-527f-bffb-98a5a1861107", "id": "CVE-2022-24823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24823 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:308441cb-2149-58ce-8bc6-5536d573a7a7", "id": "CVE-2022-41881", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41881 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:03b833cb-9c49-57be-85b7-31f4daf07dcd", "id": "CVE-2022-41915", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41915 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:73e50a18-c2d4-5f40-827f-5957ddba0b82", "id": "CVE-2023-34462", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34462 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e7b3665b-ef98-50cc-8563-3827e441c397", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1d60c069-b81f-59aa-b021-7eb53de84985", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-codec-stomp 4.1.63.Final-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:28cb3fd6-6b02-528b-b30e-0dc3d09fdaae", "id": "CVE-2024-29025", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-29025 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f3c556f6-9dfb-56e1-8493-9d3b2a347674", "id": "CVE-2024-47535", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47535 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8b425413-b6f3-5cde-8a2f-eecdbd13e527", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8226a977-dc29-5baa-b452-b3dec08b161d", "id": "CVE-2025-25193", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-25193 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:746993cf-cc7e-5df6-aedc-19731db2fb67", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:93dd863b-afbd-5376-8332-a6f49cc8f8de", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:60442388-5b2c-59ef-9499-4d9b65d6b27c", "id": "CVE-2025-58057", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58057 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3062a158-1238-5b23-b907-bae95ed0dde6", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4d08c28f-ec5d-5c31-803c-55d8f380f234", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2ab120c1-1b41-5f96-9c2d-ae1d69d05b1c", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5a4fe3cf-447e-5423-b685-37fb0b535164", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:053e41ad-2e92-55f0-b992-d60aa54cb66a", "id": "CVE-2026-41417", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41417 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bee0e329-a167-541e-b7dc-705089ecb456", "id": "CVE-2026-42577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42577 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ae71ec2e-412f-505a-886a-08ee3971bc72", "id": "CVE-2026-42578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42578 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5a491116-b418-5714-92b8-68cccd8a4613", "id": "CVE-2026-42579", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42579 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:cde2f495-9603-5dab-9bf1-9eec5b9a5c6e", "id": "CVE-2026-42580", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42580 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a7dad2d4-9403-5a5a-8305-f577e1750616", "id": "CVE-2026-42581", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42581 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:201cd9ea-2abb-5655-8f5f-21d302f8fcf5", "id": "CVE-2026-42584", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42584 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3938eff3-3256-5575-9aa6-b1eaf8609a90", "id": "CVE-2026-42585", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42585 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:734a44dc-dfea-5b16-af94-7b3d42790f3d", "id": "CVE-2026-42586", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42586 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8bd134db-30cc-5b76-8511-11a0091f1bd9", "id": "CVE-2026-42587", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42587 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c5dbc7db-47a7-5932-83ab-9939cbabc10e", "id": "CVE-2026-44248", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44248 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c50d261b-5d81-5ed0-af85-fafbced1da24", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.63.Final-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.63.Final-tuxcare.3" } ] }