{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:411b2216-4f8e-5ac8-bec1-bdc6366bb130", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1", "type": "library", "group": "io.netty", "name": "netty-handler", "version": "4.1.93.Final-tuxcare.1", "purl": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:9558208d-8b00-500a-ad51-e554e0fbb047", "id": "CVE-2023-34462", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34462 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7aeb25bc-d619-5e4d-be1e-8685200114f0", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5ad5f678-95d3-55f0-93de-a6b6f625d56d", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-handler 4.1.93.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:437476a1-58e6-524e-8e01-2cebbf70afaa", "id": "CVE-2024-29025", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-29025 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7ffd0796-604b-58d0-b5b2-05efdcf0fc97", "id": "CVE-2024-47535", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47535 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a74c564e-966b-5911-8f47-94a357885f6f", "id": "CVE-2025-25193", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-25193 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8ea2c6b0-5ef8-5262-ba7e-5b46a070ca98", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5f1771ce-d295-50af-95b2-f4773ca38842", "id": "CVE-2025-58056", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58056 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:aadbe877-50fe-55bb-add3-cfbc821c2534", "id": "CVE-2025-58057", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58057 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b292e766-a452-5b3e-a1d0-57c00b8ef9bd", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5c6f9695-106a-575f-872b-4dc9811814f9", "id": "CVE-2025-67735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-67735 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7f9b228e-e282-5323-ab7a-4d14eff0a2ab", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c480076e-d402-56d0-9768-d65237b36b31", "id": "CVE-2026-33871", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-33871 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:68ec7ba3-7307-527e-9c19-d6fa25ecf800", "id": "CVE-2026-41417", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41417 affects version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:03dd97f0-f67d-5f66-befb-782e12dd3c32", "id": "CVE-2026-42577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42577 affects version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:214b7a39-42ac-52b9-ae04-5eb80122a31d", "id": "CVE-2026-42578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42578 affects version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:59d03724-536b-5a90-86c2-dcabae5df90b", "id": "CVE-2026-42579", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42579 affects version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:381b0504-a32e-5f87-9102-1d4589939cb9", "id": "CVE-2026-42580", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42580 affects version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:890cf86a-e5ac-5192-a94d-7e2172d99747", "id": "CVE-2026-42581", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42581 affects version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c453badf-8aab-5693-9beb-5037b0095193", "id": "CVE-2026-42584", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42584 affects version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8b3f280f-ab04-5e6a-ac92-b77e663c7867", "id": "CVE-2026-42585", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42585 affects version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:55a47713-8761-578e-9108-7a8ca8595bfd", "id": "CVE-2026-42586", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42586 affects version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2efb70f6-7fb8-5400-a9c1-a8c9355cfb0c", "id": "CVE-2026-42587", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42587 affects version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c7faab60-8382-5231-8ee4-6c6ad1b10be2", "id": "CVE-2026-44248", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44248 affects version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fd27b433-a4da-549a-b988-6d918c406c67", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }