{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:17892092-8d10-5df0-8e6a-3a421242c3b5", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-handler-ssl-ocsp@4.1.112.Final-tuxcare.3", "type": "library", "group": "io.netty", "name": "netty-handler-ssl-ocsp", "version": "4.1.112.Final-tuxcare.3", "purl": "pkg:maven/io.netty/netty-handler-ssl-ocsp@4.1.112.Final-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:ecf4eb20-87c3-50c3-8348-33b2a7d1603f", "id": "CVE-2024-47535", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-47535 affects version 4.1.112.Final-tuxcare.3 of io.netty:netty-handler-ssl-ocsp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-ssl-ocsp@4.1.112.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:12149820-7dbc-5295-8600-681e28cfbf7b", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.112.Final-tuxcare.3 of io.netty:netty-handler-ssl-ocsp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-ssl-ocsp@4.1.112.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b23060e7-77fe-57bb-8e80-848501693504", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.112.Final-tuxcare.3 of io.netty:netty-handler-ssl-ocsp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-ssl-ocsp@4.1.112.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bcc54e4d-1a88-5556-9584-96c2d64a883f", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.112.Final-tuxcare.3 of io.netty:netty-handler-ssl-ocsp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-ssl-ocsp@4.1.112.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8a0f44d2-2bfd-5a8c-9faf-9fb624e6aa77", "id": "CVE-2025-58056", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58056 is fixed in version 4.1.112.Final-tuxcare.3 of io.netty:netty-handler-ssl-ocsp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-ssl-ocsp@4.1.112.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:cfcf4f97-cf5b-508a-a09c-b8f4a3d03274", "id": "CVE-2025-58057", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58057 is fixed in version 4.1.112.Final-tuxcare.3 of io.netty:netty-handler-ssl-ocsp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-ssl-ocsp@4.1.112.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e2b401ed-fa3a-5723-a357-50f138ac940e", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.112.Final-tuxcare.3 of io.netty:netty-handler-ssl-ocsp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-ssl-ocsp@4.1.112.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:646947f9-3c8d-5cbc-9128-a472bf3796a3", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.112.Final-tuxcare.3 of io.netty:netty-handler-ssl-ocsp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-ssl-ocsp@4.1.112.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c6c9cd6c-e414-51c8-9761-7248c811ae95", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.112.Final-tuxcare.3 of io.netty:netty-handler-ssl-ocsp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-ssl-ocsp@4.1.112.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5d5deff0-726b-5a29-8df8-39a35ae15ee7", "id": "CVE-2026-33871", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-33871 is fixed in version 4.1.112.Final-tuxcare.3 of io.netty:netty-handler-ssl-ocsp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-ssl-ocsp@4.1.112.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:14928275-d5a4-5269-b473-9d19e6a6c43f", "id": "CVE-2026-41417", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41417 affects version 4.1.112.Final-tuxcare.3 of io.netty:netty-handler-ssl-ocsp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-ssl-ocsp@4.1.112.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:db870cf5-a693-525d-a37e-357a02a5d6ec", "id": "CVE-2026-42577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42577 affects version 4.1.112.Final-tuxcare.3 of io.netty:netty-handler-ssl-ocsp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-ssl-ocsp@4.1.112.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a8eed92e-55d9-5c04-9b01-7f5c62d1a451", "id": "CVE-2026-42578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42578 affects version 4.1.112.Final-tuxcare.3 of io.netty:netty-handler-ssl-ocsp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-ssl-ocsp@4.1.112.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f3d7eacb-061b-5270-9fd8-997d5313ffcd", "id": "CVE-2026-42579", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42579 affects version 4.1.112.Final-tuxcare.3 of io.netty:netty-handler-ssl-ocsp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-ssl-ocsp@4.1.112.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:40122edc-2415-5c2b-82b0-12ffa78849af", "id": "CVE-2026-42580", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42580 affects version 4.1.112.Final-tuxcare.3 of io.netty:netty-handler-ssl-ocsp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-ssl-ocsp@4.1.112.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ef76ff37-efc3-5482-a743-2d090853cf47", "id": "CVE-2026-42581", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42581 affects version 4.1.112.Final-tuxcare.3 of io.netty:netty-handler-ssl-ocsp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-ssl-ocsp@4.1.112.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6d5f160f-9b77-5969-a714-d91a8b1f5879", "id": "CVE-2026-42584", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42584 affects version 4.1.112.Final-tuxcare.3 of io.netty:netty-handler-ssl-ocsp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-ssl-ocsp@4.1.112.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:cdd4db19-fb71-5c44-b799-95e51711d0d7", "id": "CVE-2026-42585", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42585 affects version 4.1.112.Final-tuxcare.3 of io.netty:netty-handler-ssl-ocsp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-ssl-ocsp@4.1.112.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:aa160331-d5bc-5ca5-9aae-e542395f1efe", "id": "CVE-2026-42586", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42586 affects version 4.1.112.Final-tuxcare.3 of io.netty:netty-handler-ssl-ocsp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-ssl-ocsp@4.1.112.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:70c8278b-e73b-529b-80ee-24626f47a013", "id": "CVE-2026-42587", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42587 affects version 4.1.112.Final-tuxcare.3 of io.netty:netty-handler-ssl-ocsp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-ssl-ocsp@4.1.112.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:76487d29-13e3-5bfc-b401-08573c57c12d", "id": "CVE-2026-44248", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44248 affects version 4.1.112.Final-tuxcare.3 of io.netty:netty-handler-ssl-ocsp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-ssl-ocsp@4.1.112.Final-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-handler-ssl-ocsp@4.1.112.Final-tuxcare.3" } ] }