{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:361634d1-360c-579c-b3ea-9f51435b090e", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-buffer@4.1.112.Final-tuxcare.2", "type": "library", "group": "io.netty", "name": "netty-buffer", "version": "4.1.112.Final-tuxcare.2", "purl": "pkg:maven/io.netty/netty-buffer@4.1.112.Final-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:8b2b19bf-8fd3-5e02-bbda-d785432ebe4e", "id": "CVE-2024-47535", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-47535 affects version 4.1.112.Final-tuxcare.2 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.112.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0a152019-e4ea-57c3-aa6c-f46cc34a987e", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.112.Final-tuxcare.2 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.112.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:977ded4e-2b9b-59fd-b174-aac8da07f975", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.112.Final-tuxcare.2 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.112.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c14981a0-bb76-5514-943e-32a0d50b04b1", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.112.Final-tuxcare.2 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.112.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:13e07055-b666-52f7-945b-288b6dacedca", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.112.Final-tuxcare.2 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.112.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:856e1ab7-3e41-5873-bedb-63b6633988af", "id": "CVE-2025-58057", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58057 is fixed in version 4.1.112.Final-tuxcare.2 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.112.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0cb1af1f-545d-5c68-b21e-a7fb5c9a4fdc", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.112.Final-tuxcare.2 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.112.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:58dddcb2-8268-5803-bd0e-4e7520df757f", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.112.Final-tuxcare.2 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.112.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fc78a7cf-87ac-515d-a2bf-dbec03cb4c2c", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.112.Final-tuxcare.2 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.112.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9cad36fc-cdc5-50b1-a70a-dd8f05c3cef6", "id": "CVE-2026-33871", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-33871 is fixed in version 4.1.112.Final-tuxcare.2 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.112.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b3b0674c-409a-5217-b4cb-d96db011d685", "id": "CVE-2026-41417", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41417 affects version 4.1.112.Final-tuxcare.2 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.112.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:faedeb02-8976-57af-812b-55c3471df2a4", "id": "CVE-2026-42577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42577 affects version 4.1.112.Final-tuxcare.2 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.112.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5a8876fe-556b-5069-ad09-7b3156c0b063", "id": "CVE-2026-42578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42578 affects version 4.1.112.Final-tuxcare.2 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.112.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3bf8a4e8-029f-5b97-a12f-9485029c0247", "id": "CVE-2026-42579", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42579 affects version 4.1.112.Final-tuxcare.2 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.112.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9d8b7708-b993-52e2-8a0a-26a6df08d3d1", "id": "CVE-2026-42580", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42580 affects version 4.1.112.Final-tuxcare.2 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.112.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9882c684-ad4e-5be7-b224-d7f5e01d1888", "id": "CVE-2026-42581", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42581 affects version 4.1.112.Final-tuxcare.2 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.112.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b76ee795-716b-5c7f-a4cc-1bfb16ec125b", "id": "CVE-2026-42584", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42584 affects version 4.1.112.Final-tuxcare.2 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.112.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2bb12532-530d-5b48-bbad-ce2321af297b", "id": "CVE-2026-42585", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42585 affects version 4.1.112.Final-tuxcare.2 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.112.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:353bea4a-37b7-53ce-85ba-6f37b0b0c7f3", "id": "CVE-2026-42586", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42586 affects version 4.1.112.Final-tuxcare.2 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.112.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7b8cc9bd-1236-59be-ab72-d8ec778cc2f8", "id": "CVE-2026-42587", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42587 affects version 4.1.112.Final-tuxcare.2 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.112.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5abac442-6d09-568f-b71a-0438031ad2ad", "id": "CVE-2026-44248", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44248 affects version 4.1.112.Final-tuxcare.2 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.112.Final-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.112.Final-tuxcare.2" } ] }