{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:8abb9f61-0dfc-517e-a21d-d7b226f920e4", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1", "type": "library", "group": "io.netty", "name": "netty-resolver", "version": "4.1.63.Final-tuxcare.1", "purl": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:784d813a-8122-5058-9cde-fdf814ea951a", "id": "CVE-2021-37136", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37136 is fixed in version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:47152580-213d-55e7-af9b-8425988e7735", "id": "CVE-2021-37137", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-37137 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3a389ee0-9b36-5b27-9c9d-5459b469ed6d", "id": "CVE-2021-43797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-43797 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:96592bf5-6a69-5e12-be88-2dcefe2997f0", "id": "CVE-2022-24823", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-24823 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:27c4c3ba-afbd-56d8-9e5c-f3005d512289", "id": "CVE-2022-41881", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-41881 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c15c21fd-a3b8-50af-8fe4-a324bb6cf8d4", "id": "CVE-2022-41915", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-41915 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8463b8b2-da80-5c6a-8787-bd9346ba4736", "id": "CVE-2023-34462", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-34462 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ef0fc8f2-b4f8-582b-884c-35f77ea3b719", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:281f5f69-1e04-5992-8a8c-df42a7e955b6", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-resolver 4.1.63.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c2696629-d7ed-598b-8f1e-83d7c21b3d91", "id": "CVE-2024-29025", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-29025 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:871c4f56-5e13-55c1-adaf-9a1e4e3c2f2c", "id": "CVE-2024-47535", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-47535 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3cab1e60-d2ab-5af3-88ab-281f941cc035", "id": "CVE-2025-24970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24970 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b6346ecc-0983-5eed-aa9f-8ad1a5d28883", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4a62cabc-df78-5dbd-b73d-fb12b6100076", "id": "CVE-2025-55163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55163 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c90c7490-711d-582d-b7db-0e21f7147c6a", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3f7e2036-6f1c-533a-87f7-e66e08751908", "id": "CVE-2025-58057", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58057 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a2ca3559-9939-57e9-a4ff-b75b146bd1a2", "id": "CVE-2025-59419", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59419 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:95231d93-081d-5bb4-8791-9710f7e2109b", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:06bb8fb3-f9a3-50e2-beba-f3d8214bd393", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6ee2c73b-e7ac-5374-81f6-c12a3c20f06d", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1c43e201-5c9a-5d77-89ea-722d61f65616", "id": "CVE-2026-41417", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41417 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a09df708-8a7a-512d-9f9c-78a87fafd918", "id": "CVE-2026-42577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42577 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c9144320-dc87-5cff-b722-893fb00e695e", "id": "CVE-2026-42578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42578 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0d659c1f-2692-5278-901f-fc899733b234", "id": "CVE-2026-42579", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42579 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5c7478c0-eac1-55d5-b269-22f614367128", "id": "CVE-2026-42580", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42580 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:46f3f439-ac62-5048-af5e-c8c8fe7dd98c", "id": "CVE-2026-42581", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42581 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:35545e0a-0b85-5cc8-abdd-600d067beffb", "id": "CVE-2026-42584", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42584 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5903e0b3-e3a0-5025-86a0-21c20960af7f", "id": "CVE-2026-42585", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42585 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3735539f-4a6c-5117-9651-2c14b784b53f", "id": "CVE-2026-42586", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42586 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0d157836-f544-5a2d-99ff-b925f15a6e74", "id": "CVE-2026-42587", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42587 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:60072c2a-e6c0-5b65-8ca7-5c03f659efe5", "id": "CVE-2026-44248", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44248 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2047f7e5-8c35-5d73-a8e5-64a8093f38ce", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }