{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:8f397103-73bf-59b9-abff-a0b2b16c420f", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-dev-tools@4.1.82.Final-tuxcare.2", "type": "library", "group": "io.netty", "name": "netty-dev-tools", "version": "4.1.82.Final-tuxcare.2", "purl": "pkg:maven/io.netty/netty-dev-tools@4.1.82.Final-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:fbd5e092-9dea-55d8-ab9d-144a92e8ae91", "id": "CVE-2022-41881", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41881 is fixed in version 4.1.82.Final-tuxcare.2 of io.netty:netty-dev-tools." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-dev-tools@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fe075816-0797-5b9b-bbd7-10fafa502982", "id": "CVE-2022-41915", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-41915 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-dev-tools." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-dev-tools@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5a6b357f-0ccb-5912-a96c-8904b0d198b1", "id": "CVE-2023-34462", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-34462 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-dev-tools." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-dev-tools@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1989e889-b979-5ad7-9244-d9b9725d537e", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.82.Final-tuxcare.2 of io.netty:netty-dev-tools." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-dev-tools@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ceefc384-1584-53e9-9e2c-c3671bf62042", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-dev-tools 4.1.82.Final-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-dev-tools@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b0ebf256-d5a8-509a-b236-26e810098def", "id": "CVE-2024-29025", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-29025 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-dev-tools." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-dev-tools@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d3c80ddf-3873-5aad-b578-7ba8e6d6a734", "id": "CVE-2024-47535", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-47535 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-dev-tools." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-dev-tools@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b795803c-8621-55f3-a77b-e8e9948cc2c1", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.82.Final-tuxcare.2 of io.netty:netty-dev-tools." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-dev-tools@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6163225b-6407-59cd-9ca5-83ddae62cd71", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-dev-tools." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-dev-tools@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0880851f-5812-590a-a4ac-6daf523afabc", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.82.Final-tuxcare.2 of io.netty:netty-dev-tools." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-dev-tools@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9bc10535-3f0e-5ef3-9729-9fc3d76c2805", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-dev-tools." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-dev-tools@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:763d0cc7-c720-5423-82f1-36b06380cb8c", "id": "CVE-2025-58057", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58057 is fixed in version 4.1.82.Final-tuxcare.2 of io.netty:netty-dev-tools." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-dev-tools@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:24569a93-5129-548e-a7e1-f87a3540bbbe", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.82.Final-tuxcare.2 of io.netty:netty-dev-tools." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-dev-tools@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:34ea162f-de27-5dd2-9eb5-0c99af10ef0c", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-dev-tools." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-dev-tools@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f0d3a0b2-9bf0-5590-9c7b-659dafe58c3c", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-dev-tools." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-dev-tools@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5d1d07e8-7b20-574f-8783-5e7c0b6635b5", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-dev-tools." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-dev-tools@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6634759a-5e35-5b3e-8a53-1945e5d5d8ee", "id": "CVE-2026-41417", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41417 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-dev-tools." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-dev-tools@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:701f7868-9450-587c-b6dc-1f494365d0f8", "id": "CVE-2026-42577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42577 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-dev-tools." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-dev-tools@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6431aa10-85f2-51e4-bdd4-a1697b999b1d", "id": "CVE-2026-42578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42578 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-dev-tools." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-dev-tools@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e79060d5-823c-5aca-ad62-48128a4cf64e", "id": "CVE-2026-42579", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42579 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-dev-tools." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-dev-tools@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6dc03a57-ed3b-5e32-ad88-8ef0c2fda507", "id": "CVE-2026-42580", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42580 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-dev-tools." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-dev-tools@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6a6f7ad6-99df-5c5b-ba10-9bb4a8db302d", "id": "CVE-2026-42581", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42581 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-dev-tools." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-dev-tools@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6ad8db26-7ebb-52b5-8c07-b323fcc69e2d", "id": "CVE-2026-42584", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42584 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-dev-tools." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-dev-tools@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b2388fcd-e466-5fc3-9ab7-99b3161dbcce", "id": "CVE-2026-42585", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42585 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-dev-tools." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-dev-tools@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4a970718-94ea-56fa-8d02-03d7ef372d54", "id": "CVE-2026-42586", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42586 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-dev-tools." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-dev-tools@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2eafc533-ff13-5c5d-8c43-f2e8ea4eef6f", "id": "CVE-2026-42587", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42587 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-dev-tools." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-dev-tools@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5ea9c780-ffd2-5efc-a4ff-806b14e7bb0d", "id": "CVE-2026-44248", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44248 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-dev-tools." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-dev-tools@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0ffd6ca4-b8a6-5890-b740-474a2af9b60f", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "resolved", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p is fixed in version 4.1.82.Final-tuxcare.2 of io.netty:netty-dev-tools." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-dev-tools@4.1.82.Final-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-dev-tools@4.1.82.Final-tuxcare.2" } ] }