{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:f6040c97-cf63-59b8-85c4-09ceb6312a8d", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-common@4.1.63.Final-tuxcare.2", "type": "library", "group": "io.netty", "name": "netty-common", "version": "4.1.63.Final-tuxcare.2", "purl": "pkg:maven/io.netty/netty-common@4.1.63.Final-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:e4c35cfc-5733-52dd-ab13-e69fbfe18ff0", "id": "CVE-2021-37136", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37136 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:19b516db-52c6-5ea3-a3d9-7804958b1c12", "id": "CVE-2021-37137", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37137 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ce483eb4-b654-5a7d-9905-9d9a30b4d6b7", "id": "CVE-2021-43797", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-43797 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fd25c827-f355-51bc-9b7d-641ed5fa5a5a", "id": "CVE-2022-24823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24823 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ecb857c7-acea-5d97-90b2-711c790903f3", "id": "CVE-2022-41881", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41881 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:53d7a5ce-c3d4-5702-9a87-972d2d7b8e91", "id": "CVE-2022-41915", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41915 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9879f074-a86f-51e0-a4cd-b6bdbbd6bb5d", "id": "CVE-2023-34462", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34462 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b327909a-e00e-5999-b57e-e98adf2fa830", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cf8cb620-0215-548a-8e2b-d3c3e21404a2", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-common 4.1.63.Final-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5116ed5f-1f85-5574-870e-0a642feca710", "id": "CVE-2024-29025", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-29025 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:95284524-a8c4-5609-b3ab-cf6c15b250d6", "id": "CVE-2024-47535", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47535 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4b5b0c5d-fa65-5f2d-aba1-1c684b15dc19", "id": "CVE-2025-24970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24970 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:98dcab8c-5eed-55bd-bc32-00b65491a4e9", "id": "CVE-2025-25193", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-25193 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:878ea7e8-83c5-587d-bf8e-83eae0b913e6", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4a04668e-4a7a-5303-9c4c-f97f39be214a", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3cdab392-dfd0-5e0b-9b28-e3186e586d46", "id": "CVE-2025-58057", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58057 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:de65fd5b-c416-5dd3-9945-1358441a118c", "id": "CVE-2025-59419", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59419 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:de488584-09cb-57ae-9f7d-ed3f82723f55", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0a655bea-33df-5cb5-ae6a-afb280e8be48", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:96b03d5a-01c3-5c1c-9730-a7dd073a57e1", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:53e9de24-e5ce-5c17-acb5-78b0831af3f9", "id": "CVE-2026-41417", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41417 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b21048bd-1ec6-58ec-8f1b-c6413004f2fd", "id": "CVE-2026-42577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42577 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d81ecefb-f70d-582e-a951-5cc1eaff49f1", "id": "CVE-2026-42578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42578 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cd254d45-3f66-5395-8c7b-32ef3bb13326", "id": "CVE-2026-42579", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42579 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fbb82638-edd2-5bdc-bf7d-0421420e227e", "id": "CVE-2026-42580", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42580 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9a702036-2ec2-540c-b12b-9131a5ec77cd", "id": "CVE-2026-42581", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42581 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9b09bf18-96aa-5eff-9f0e-2c93d17569b0", "id": "CVE-2026-42584", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42584 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0c2e74e0-30de-5c9a-80cf-77e51edcf70e", "id": "CVE-2026-42585", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42585 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f7246491-4903-55d8-97e9-8d5f1f6c5679", "id": "CVE-2026-42586", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42586 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d48d77d6-d4ae-53c8-be8a-612c651dbf30", "id": "CVE-2026-42587", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42587 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c3835d0c-5a41-5c54-a5b5-d489f30b9447", "id": "CVE-2026-44248", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44248 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:903b89d5-f0fa-5daa-80a0-7877839d936f", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.63.Final-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.63.Final-tuxcare.2" } ] }