{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:904fbdc9-aa7e-5d78-9ed5-56848070b532", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-common@4.1.60.Final-tuxcare.2", "type": "library", "group": "io.netty", "name": "netty-common", "version": "4.1.60.Final-tuxcare.2", "purl": "pkg:maven/io.netty/netty-common@4.1.60.Final-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:dd1d553d-4373-59ea-85fe-757fc6c23980", "id": "CVE-2021-21409", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-21409 is fixed in version 4.1.60.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:89f5b0b6-16c7-53c3-a2d0-013329f3877d", "id": "CVE-2021-37136", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37136 is fixed in version 4.1.60.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:83646e1f-c736-5a1b-a8e2-8e8366720bf7", "id": "CVE-2021-37137", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37137 is fixed in version 4.1.60.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a09284e5-b22d-5552-8d7e-b742baf6bb84", "id": "CVE-2021-43797", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-43797 is fixed in version 4.1.60.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:652c75b5-e274-5024-971a-26fd38cc93e1", "id": "CVE-2022-24823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24823 is fixed in version 4.1.60.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b4c350b4-7807-5e44-864a-2634b9b43a34", "id": "CVE-2022-41881", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41881 is fixed in version 4.1.60.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:480d2234-a2f9-5b79-ac5c-c5392532b244", "id": "CVE-2023-34462", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34462 is fixed in version 4.1.60.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:750c9999-55b1-552c-a349-7985d2f52ed3", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 4.1.60.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ed72c55e-ee37-5b44-9e39-36c2c779a967", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-common 4.1.60.Final-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ae227e72-7454-57ac-ab8e-5dd0930d14c9", "id": "CVE-2024-29025", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-29025 is fixed in version 4.1.60.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:97d6b788-2047-52c3-8425-64738c680dc3", "id": "CVE-2024-47535", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47535 is fixed in version 4.1.60.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fcb46688-7a72-5dc4-b916-7955473b028b", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.60.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d7d9878c-64fd-58ea-9fd2-f7048389f5f8", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.60.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c9bc93c3-29d1-543e-8a29-6b8dbbb0e742", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.60.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4ea2d430-f419-5cba-9fb6-7878ac2acd7e", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.60.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f06844a7-bedd-55e4-93a0-a2d4e84e5bd3", "id": "CVE-2025-58057", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58057 is fixed in version 4.1.60.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2675b1d2-7d3d-5d75-870b-c7e8914cf244", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.60.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d571c4be-f644-507f-8ac0-58f40f152ab8", "id": "CVE-2025-67735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-67735 is fixed in version 4.1.60.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a2f08417-7622-579c-a70a-b63401b8f2de", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.60.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:990aac5f-5ca2-5d02-906d-9d5c307a538b", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.60.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4b5924b0-468d-56c9-9855-65925c999579", "id": "CVE-2026-41417", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41417 affects version 4.1.60.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:51383a92-bb0b-5f59-89bb-40026add9ff7", "id": "CVE-2026-42577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42577 affects version 4.1.60.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:22e54534-fc3b-5468-b64c-0c0351bb356b", "id": "CVE-2026-42578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42578 affects version 4.1.60.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5e406da4-d740-555b-b771-75f605537b0e", "id": "CVE-2026-42579", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42579 affects version 4.1.60.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6fff8a90-50c3-5276-b39e-5565db4c1fd7", "id": "CVE-2026-42580", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42580 affects version 4.1.60.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:87f5dadb-8bd6-5bc2-91c0-28d103dcd6fe", "id": "CVE-2026-42581", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42581 affects version 4.1.60.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ec091095-2b68-5e6a-9e3c-5ad56558f53a", "id": "CVE-2026-42584", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42584 affects version 4.1.60.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:58a93a61-755b-5c0c-a5b0-c6e5aeb4e903", "id": "CVE-2026-42585", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42585 affects version 4.1.60.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6b29b2dd-ef07-5b1a-9978-d838aeda6c08", "id": "CVE-2026-42586", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42586 affects version 4.1.60.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3f626f1c-99cd-5cc3-982a-1e636ed7dfd4", "id": "CVE-2026-42587", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42587 affects version 4.1.60.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ac6d5b05-a951-55b4-b321-6ad5d4791d77", "id": "CVE-2026-44248", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44248 affects version 4.1.60.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d75feeb6-4419-5c6c-b05b-973647683da9", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "resolved", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p is fixed in version 4.1.60.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.60.Final-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.60.Final-tuxcare.2" } ] }