{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:d022d922-d463-5fb9-a180-e574ce239706", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-codec@4.1.73.Final-tuxcare.1", "type": "library", "group": "io.netty", "name": "netty-codec", "version": "4.1.73.Final-tuxcare.1", "purl": "pkg:maven/io.netty/netty-codec@4.1.73.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:6616d154-e8c0-5c8c-86b4-1e044d1fad47", "id": "CVE-2022-24823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24823 is fixed in version 4.1.73.Final-tuxcare.1 of io.netty:netty-codec." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:aca4ffe9-0597-51e3-8ba8-de9685a7a097", "id": "CVE-2022-41881", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41881 is fixed in version 4.1.73.Final-tuxcare.1 of io.netty:netty-codec." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f5ea95f9-bf52-5e65-9c89-42ac96a15ffb", "id": "CVE-2022-41915", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-41915 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-codec." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b36a26fb-56d1-5c7b-9d67-e9a22b16c2fe", "id": "CVE-2023-34462", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-34462 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-codec." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e4ab2baf-627d-5ac5-bb7e-b52dd7becc02", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.73.Final-tuxcare.1 of io.netty:netty-codec." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cea9e434-0e4e-5d74-8eaa-b22188b99563", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-codec 4.1.73.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:73b06110-3cd2-5e1d-b09f-d52b7e43e37a", "id": "CVE-2024-29025", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-29025 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-codec." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:51d6993e-e8b4-5959-afdc-6ac2863c9885", "id": "CVE-2024-47535", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47535 is fixed in version 4.1.73.Final-tuxcare.1 of io.netty:netty-codec." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5c8db824-7d5e-5931-ad73-4ef1cad6d009", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.73.Final-tuxcare.1 of io.netty:netty-codec." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3fb627fc-6822-5560-878d-271b4093b3f0", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-codec." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:28636a15-b8b4-5354-941e-967b22ed40cb", "id": "CVE-2025-55163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55163 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-codec." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:814366e6-4f42-5180-a072-89a9d6c92a1d", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-codec." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:da45a585-ccca-58d8-b533-f8672b27aa46", "id": "CVE-2025-58057", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58057 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-codec." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e6c481ef-698a-5fe2-80bc-8b67609c6828", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.73.Final-tuxcare.1 of io.netty:netty-codec." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:17b1e8a1-d80c-5167-8ae5-5aedd458b37a", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-codec." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:90bed272-96b3-55fe-a99d-b0cb214fece3", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-codec." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d6f54cac-8baf-5cf8-b245-c3a7a70ddb04", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-codec." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6fb8b07d-946f-5901-9a0b-06c1d3c0248e", "id": "CVE-2026-41417", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41417 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-codec." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b725346a-b3c7-5cca-af91-e20fb03732b0", "id": "CVE-2026-42577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42577 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-codec." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4ca046d6-2c8b-5805-83eb-7402257c0fa5", "id": "CVE-2026-42578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42578 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-codec." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:22e996cc-aefb-584f-8b61-d864860b99f0", "id": "CVE-2026-42579", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42579 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-codec." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:011da7df-79ed-5c00-9b4d-d5101a8a2018", "id": "CVE-2026-42580", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42580 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-codec." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c6a7c2ec-359e-5319-bfaa-6d683a3d7d52", "id": "CVE-2026-42581", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42581 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-codec." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:361d1865-1de6-5c85-a5d3-62347663f0e9", "id": "CVE-2026-42584", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42584 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-codec." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2080328f-2bcd-5189-a5b9-c84ede594246", "id": "CVE-2026-42585", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42585 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-codec." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:34150fb3-ad56-50e5-807b-e7ffc2c73451", "id": "CVE-2026-42586", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42586 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-codec." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:18898568-d526-5675-88ac-d91dcb10c948", "id": "CVE-2026-42587", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42587 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-codec." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bd8e485e-794c-5206-8068-0833707012fa", "id": "CVE-2026-44248", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44248 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-codec." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:facda899-acd4-5648-b16a-d9808a509bf0", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-codec." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec@4.1.73.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-codec@4.1.73.Final-tuxcare.1" } ] }