{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:edbf2643-66b8-5a26-8a85-2b1756b5ae88", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.60.Final-tuxcare.2", "type": "library", "group": "io.netty", "name": "netty-handler-proxy", "version": "4.1.60.Final-tuxcare.2", "purl": "pkg:maven/io.netty/netty-handler-proxy@4.1.60.Final-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:5acaccdd-0dab-5cc4-b8c4-071fdbabe919", "id": "CVE-2021-21409", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-21409 is fixed in version 4.1.60.Final-tuxcare.2 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f0f56c8d-bfeb-5df8-80ac-0f95749675de", "id": "CVE-2021-37136", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37136 is fixed in version 4.1.60.Final-tuxcare.2 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b20fe95d-8420-505c-8085-1647cf39ef81", "id": "CVE-2021-37137", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37137 is fixed in version 4.1.60.Final-tuxcare.2 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:84b2a1c6-ec13-52b0-b73d-c59a58704aaf", "id": "CVE-2021-43797", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-43797 is fixed in version 4.1.60.Final-tuxcare.2 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7f0c791d-c5d4-569e-a79e-ba62ce5ffff3", "id": "CVE-2022-24823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24823 is fixed in version 4.1.60.Final-tuxcare.2 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2c1d79dd-6781-5c28-bd4f-514fdb53be6e", "id": "CVE-2022-41881", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41881 is fixed in version 4.1.60.Final-tuxcare.2 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:173e8d13-ba62-556d-8d18-e7805519410a", "id": "CVE-2023-34462", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34462 is fixed in version 4.1.60.Final-tuxcare.2 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c9d7aff4-d47c-59b1-bbc4-dbdb0c589587", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 4.1.60.Final-tuxcare.2 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:45999c53-21ba-59fe-b071-6c1be78b53f7", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-handler-proxy 4.1.60.Final-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1de9fcc3-030f-5cea-8ff7-f4a571776b88", "id": "CVE-2024-29025", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-29025 is fixed in version 4.1.60.Final-tuxcare.2 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2a333de0-c8b1-55d9-ac93-ace08e9cf02e", "id": "CVE-2024-47535", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47535 is fixed in version 4.1.60.Final-tuxcare.2 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:59a6fd22-04e5-5949-b273-dce083c5a3cf", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.60.Final-tuxcare.2 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b7c9720d-73ef-5236-8bb5-40b4b5fff786", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.60.Final-tuxcare.2 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c28a4cf1-1227-59f8-8c95-f1cb4a09a185", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.60.Final-tuxcare.2 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e30f0b80-f499-51e0-964b-03cbf9b1da3d", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.60.Final-tuxcare.2 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:aa84f775-1e1e-5326-8ce5-1cfc2eb930b5", "id": "CVE-2025-58057", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58057 is fixed in version 4.1.60.Final-tuxcare.2 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:351cdcea-eff6-5e3d-82fd-33ed0f315a37", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.60.Final-tuxcare.2 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1ba32a4b-b0cb-5df5-baf4-404da950a7cb", "id": "CVE-2025-67735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-67735 is fixed in version 4.1.60.Final-tuxcare.2 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c69529ae-d30e-500c-aaa4-9804b2844810", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.60.Final-tuxcare.2 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:09196063-1038-5153-af6b-7e0d9044a6b9", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.60.Final-tuxcare.2 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ba5c4f4d-6eab-59c9-b92f-882bb7660360", "id": "CVE-2026-41417", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41417 affects version 4.1.60.Final-tuxcare.2 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ce79f70f-1f8a-5e41-9073-a0dd32aa40cb", "id": "CVE-2026-42577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42577 affects version 4.1.60.Final-tuxcare.2 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d59c14cd-7529-54a7-8c5a-6394b87ea331", "id": "CVE-2026-42578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42578 affects version 4.1.60.Final-tuxcare.2 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2d90655f-a863-517b-9023-7257e3c489eb", "id": "CVE-2026-42579", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42579 affects version 4.1.60.Final-tuxcare.2 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:51cfee34-3429-5bf1-9073-833e6e78e896", "id": "CVE-2026-42580", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42580 affects version 4.1.60.Final-tuxcare.2 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9b13449f-3d1d-5f36-910d-aaad7c088c41", "id": "CVE-2026-42581", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42581 affects version 4.1.60.Final-tuxcare.2 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3a539b06-a66f-5959-8992-ed4e5c43bb9b", "id": "CVE-2026-42584", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42584 affects version 4.1.60.Final-tuxcare.2 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5f6f4af1-cfa9-586f-8f8c-6252913c27fc", "id": "CVE-2026-42585", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42585 affects version 4.1.60.Final-tuxcare.2 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f16bf027-f30d-5f02-9182-fe2fe056cde1", "id": "CVE-2026-42586", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42586 affects version 4.1.60.Final-tuxcare.2 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:19e56c92-658d-5f50-9619-68f5b9da2eaf", "id": "CVE-2026-42587", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42587 affects version 4.1.60.Final-tuxcare.2 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0f80ade8-987c-54ba-8b20-da010ffdb97a", "id": "CVE-2026-44248", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44248 affects version 4.1.60.Final-tuxcare.2 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:938d218b-2f77-5008-a668-2b210829f9de", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "resolved", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p is fixed in version 4.1.60.Final-tuxcare.2 of io.netty:netty-handler-proxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.60.Final-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-handler-proxy@4.1.60.Final-tuxcare.2" } ] }