{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:1dcde386-9536-54d2-9ab0-2793dd33c85a", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.58.Final-tuxcare.2", "type": "library", "group": "io.netty", "name": "netty-transport-rxtx", "version": "4.1.58.Final-tuxcare.2", "purl": "pkg:maven/io.netty/netty-transport-rxtx@4.1.58.Final-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:bddfcd11-5129-5fbe-9761-a5b527fea4fc", "id": "CVE-2021-21290", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-21290 is fixed in version 4.1.58.Final-tuxcare.2 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cdebe58c-8a9d-59dc-abe4-9dd9aec090f2", "id": "CVE-2021-21295", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-21295 is fixed in version 4.1.58.Final-tuxcare.2 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ca9c2c93-8724-505c-af0f-41c152a7ad0c", "id": "CVE-2021-21409", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-21409 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7c0c2c40-7a08-595e-ab2b-a199a0e60a61", "id": "CVE-2021-37136", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37136 is fixed in version 4.1.58.Final-tuxcare.2 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1bb7402f-2238-5f91-a1a0-4da49f28352d", "id": "CVE-2021-43797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-43797 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5a71a54b-43ca-5876-8304-12045a725e6b", "id": "CVE-2022-24823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24823 is fixed in version 4.1.58.Final-tuxcare.2 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:076d5313-ce30-530e-8997-431b30808727", "id": "CVE-2022-41881", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41881 is fixed in version 4.1.58.Final-tuxcare.2 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c951b843-b00b-58fe-8ff0-b93b5974a068", "id": "CVE-2023-34462", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34462 is fixed in version 4.1.58.Final-tuxcare.2 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:65c2af92-5a5d-5e0d-a817-8ed213a88049", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.58.Final-tuxcare.2 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c4b98fb0-e133-5d1a-acf9-ccf4a424535f", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-transport-rxtx 4.1.58.Final-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:10f164e2-1fce-5350-90fd-b29acba88e50", "id": "CVE-2024-29025", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-29025 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8aa9be49-f358-5a66-89d7-818ee7286f00", "id": "CVE-2024-47535", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47535 is fixed in version 4.1.58.Final-tuxcare.2 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:84fbd5e5-cc2e-5e88-ace0-618feedff992", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.58.Final-tuxcare.2 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ac52002d-d79b-5ba7-a8d7-6004982e42a8", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:309fc734-2478-50ea-a32a-e68d241733a6", "id": "CVE-2025-55163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55163 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f9900bf0-c92e-596d-96dd-3fdb22fe14a0", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2e09e13e-308c-5798-af85-ff8457c583b9", "id": "CVE-2025-58057", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58057 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:026d1a57-3cb9-5e4e-a1eb-2a6b798f2b3b", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.58.Final-tuxcare.2 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9ef3e1b6-f95c-5a55-b81f-c2fc97e13c83", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e9095227-0c02-531e-9207-7f7c670bfc26", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:958dbd7b-1421-5381-b6d7-a9585b8de9aa", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8f12d9de-467a-526f-aa62-07e160a7095a", "id": "CVE-2026-41417", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41417 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3a24c1a4-bed5-59ee-923b-d7c437288ccc", "id": "CVE-2026-42577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42577 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b5200249-fe40-5831-85d8-d5414ad44916", "id": "CVE-2026-42578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42578 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:449c766b-48ab-51ae-8525-55ca653c820d", "id": "CVE-2026-42579", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42579 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4bf78465-2161-5767-9fa2-31d009750c08", "id": "CVE-2026-42580", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42580 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4e170331-52ea-5031-8bd7-63226022d870", "id": "CVE-2026-42581", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42581 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:368563fd-cdc7-50b2-abdb-37cb0c43e447", "id": "CVE-2026-42584", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42584 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1c126041-f808-5b21-9b15-ad41f072681f", "id": "CVE-2026-42585", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42585 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4a02fc4f-7a08-5fe8-ae0f-c7d01f29a189", "id": "CVE-2026-42586", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42586 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c1a97cff-c771-5e32-8609-80bde31715fd", "id": "CVE-2026-42587", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42587 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fcd18e17-0f09-5af9-8254-1a62891b6a13", "id": "CVE-2026-44248", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44248 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5c940571-8c08-57e0-9e83-0934b2b79ee0", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-transport-rxtx." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.58.Final-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-transport-rxtx@4.1.58.Final-tuxcare.2" } ] }