{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:43d33e14-c1db-51a5-ab21-e6da338290e7", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-handler@4.1.63.Final-tuxcare.2", "type": "library", "group": "io.netty", "name": "netty-handler", "version": "4.1.63.Final-tuxcare.2", "purl": "pkg:maven/io.netty/netty-handler@4.1.63.Final-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:69be6d5c-11b4-51a1-acdd-9821000127fe", "id": "CVE-2021-37136", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37136 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:948dafa1-5ea5-5c53-98ab-32c43691192f", "id": "CVE-2021-37137", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37137 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2bc4112f-b6f2-583d-b25f-3b0ac41bb621", "id": "CVE-2021-43797", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-43797 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8b2b3311-bc32-59ca-9a12-ceee75c538f7", "id": "CVE-2022-24823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24823 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f5c4f7f5-da7c-51fa-8e43-c815c51c6e54", "id": "CVE-2022-41881", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41881 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:da3ec9d1-e26b-5399-b22f-709bf0e4fa17", "id": "CVE-2022-41915", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41915 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e9cfb9d5-d68e-53cb-a6da-2e22550b50da", "id": "CVE-2023-34462", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34462 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8f355ec9-c01d-56e5-a563-f5124e6ceae4", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8c2822b8-fabc-5282-8d3d-9154dc3a4864", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-handler 4.1.63.Final-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ee4f6fce-395a-5d85-876e-9872fc45e0bb", "id": "CVE-2024-29025", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-29025 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f79a05d6-830f-5609-bd10-5e886d1591a3", "id": "CVE-2024-47535", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47535 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5d422680-62cb-541c-85ab-0f6578fcf74c", "id": "CVE-2025-24970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24970 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bc2fa623-6116-5e93-a6e2-1fa6da6bd459", "id": "CVE-2025-25193", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-25193 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0ea3345e-cfb6-5af3-9039-62068c311759", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bcbec9e4-cf3a-5c6d-9866-dc8ebf354cbd", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:29940343-2cec-538b-ac5e-6ba1396e723d", "id": "CVE-2025-58057", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58057 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9dea59e9-ff78-50b5-a21c-4483f80bd04a", "id": "CVE-2025-59419", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59419 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:becaf986-f1b1-55dc-897b-1545919bcb8a", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1f6245bd-fe61-5b11-9a82-a045b52906f6", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:717f0e89-f146-56ae-b5d7-3218e9c7ddbf", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:acb0db53-a571-57f2-944e-7d2f05e4b649", "id": "CVE-2026-41417", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41417 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4f2ceee6-b2bf-5ae8-b6b4-34da08843814", "id": "CVE-2026-42577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42577 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7e8dacda-6855-5d4a-a548-bd1f7dff4a01", "id": "CVE-2026-42578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42578 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:80e1b5a0-5518-52b8-9038-984fee6a2bfc", "id": "CVE-2026-42579", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42579 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:51c8d702-f69c-533d-b736-994a2019983f", "id": "CVE-2026-42580", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42580 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b0307d56-b233-55b4-8820-87230065da86", "id": "CVE-2026-42581", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42581 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:df3fcb7c-a0d2-52f2-9484-80a707dc232b", "id": "CVE-2026-42584", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42584 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7ef7a5dd-0726-54b4-8f48-c4d562f5e338", "id": "CVE-2026-42585", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42585 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5a6bd22c-ac95-5f52-98f5-654f8d838843", "id": "CVE-2026-42586", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42586 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5b1d9377-4ad6-5762-bfac-2d5a1c5082aa", "id": "CVE-2026-42587", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42587 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4958f964-203e-545d-a6ef-170ecb3c7a94", "id": "CVE-2026-44248", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44248 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:31903e16-3367-5e63-a234-5ce2134f8a00", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.63.Final-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.63.Final-tuxcare.2" } ] }