{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:cc2ea9e8-2078-55b5-86f1-468cc973bebe", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-codec-haproxy@4.1.63.Final-tuxcare.1", "type": "library", "group": "io.netty", "name": "netty-codec-haproxy", "version": "4.1.63.Final-tuxcare.1", "purl": "pkg:maven/io.netty/netty-codec-haproxy@4.1.63.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:363c3751-a9a2-513c-b81d-1eb030aeb77c", "id": "CVE-2021-37136", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37136 is fixed in version 4.1.63.Final-tuxcare.1 of io.netty:netty-codec-haproxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-haproxy@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b89c6730-9e59-5276-b7ce-009116a1c45e", "id": "CVE-2021-37137", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-37137 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-codec-haproxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-haproxy@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:227592e8-08ac-53d4-ac05-ee3b5b999ce5", "id": "CVE-2021-43797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-43797 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-codec-haproxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-haproxy@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5e7076e0-71ce-5196-9cde-5b8bd2dec09c", "id": "CVE-2022-24823", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-24823 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-codec-haproxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-haproxy@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a33d8c8f-80da-54fa-97f3-aacbb9e8a2ae", "id": "CVE-2022-41881", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-41881 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-codec-haproxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-haproxy@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b9cbfd85-7853-5b0f-b5cf-0cae78268074", "id": "CVE-2022-41915", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-41915 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-codec-haproxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-haproxy@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:328ff52a-b19b-5df3-8e69-be0fd3a98e52", "id": "CVE-2023-34462", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-34462 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-codec-haproxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-haproxy@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3d0fe267-80f8-5d51-91ec-3e0a33a86e25", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-codec-haproxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-haproxy@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:46d87692-9d67-583b-947b-b9c383b124e1", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-codec-haproxy 4.1.63.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-haproxy@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:abd93495-2230-5088-897b-7982e6aef597", "id": "CVE-2024-29025", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-29025 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-codec-haproxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-haproxy@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7279e246-fc10-5441-833b-98c486dc748c", "id": "CVE-2024-47535", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-47535 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-codec-haproxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-haproxy@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f42d2b7d-3d94-5fe7-8cc3-cb3b41f2b075", "id": "CVE-2025-24970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24970 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-codec-haproxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-haproxy@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2b75a3b6-f2bb-510e-8a19-653f6fc72852", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-codec-haproxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-haproxy@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:53e722fc-6c20-5b3b-9263-6adcb16c1e07", "id": "CVE-2025-55163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55163 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-codec-haproxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-haproxy@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:182b00b8-7d40-58a1-8863-e777d00c0ff0", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-codec-haproxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-haproxy@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0edf9e5f-e0e7-521d-9cc0-7ed6f90114bf", "id": "CVE-2025-58057", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58057 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-codec-haproxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-haproxy@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0ff27452-c65e-55da-8df0-abcb5fd5a3ce", "id": "CVE-2025-59419", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59419 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-codec-haproxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-haproxy@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fcf906a4-2a98-5bd6-afab-5a096fdea1e5", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-codec-haproxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-haproxy@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7b5b991d-9ade-551c-94a0-58dd0745f6e0", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-codec-haproxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-haproxy@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fa6ff5ca-bdb2-5282-b508-12f614338795", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-codec-haproxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-haproxy@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:254c7ba6-ba61-53e7-822a-49d085282777", "id": "CVE-2026-41417", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41417 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-codec-haproxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-haproxy@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4cd2d9f9-5d89-5014-ba8d-ec7cc2154b21", "id": "CVE-2026-42577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42577 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-codec-haproxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-haproxy@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fa63374b-a95e-530a-b3ca-b1d476916740", "id": "CVE-2026-42578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42578 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-codec-haproxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-haproxy@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:884e559a-ea60-519d-af49-de2be78c561f", "id": "CVE-2026-42579", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42579 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-codec-haproxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-haproxy@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e46f5307-6829-5783-8cce-34730cc2dca4", "id": "CVE-2026-42580", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42580 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-codec-haproxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-haproxy@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8f3e16d4-3155-5282-a9fd-34f49207883f", "id": "CVE-2026-42581", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42581 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-codec-haproxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-haproxy@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f2b4bf2a-6271-58c0-99f0-966d68c8ae91", "id": "CVE-2026-42584", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42584 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-codec-haproxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-haproxy@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c0037322-aed9-5410-a29d-22634f814269", "id": "CVE-2026-42585", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42585 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-codec-haproxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-haproxy@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:37a4378f-0d24-5837-8ef0-061311160144", "id": "CVE-2026-42586", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42586 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-codec-haproxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-haproxy@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:75551862-7cdd-53b2-8d83-73a35ee1fd02", "id": "CVE-2026-42587", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42587 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-codec-haproxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-haproxy@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e32a5041-b4d4-59da-855e-f5acba531de8", "id": "CVE-2026-44248", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44248 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-codec-haproxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-haproxy@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:519f5ade-3860-5383-8eb3-a39bf0ec3c57", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-codec-haproxy." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-haproxy@4.1.63.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-codec-haproxy@4.1.63.Final-tuxcare.1" } ] }