{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:e53f7403-474a-505d-b1a8-5c762cd4d16b", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-parent@4.1.73.Final-tuxcare.1", "type": "library", "group": "io.netty", "name": "netty-parent", "version": "4.1.73.Final-tuxcare.1", "purl": "pkg:maven/io.netty/netty-parent@4.1.73.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:fd40a5bf-9c37-54ed-862a-93531f926032", "id": "CVE-2022-24823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24823 is fixed in version 4.1.73.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d5e9e111-343b-5d40-94a2-267fdc80447d", "id": "CVE-2022-41881", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41881 is fixed in version 4.1.73.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1410a06d-e66c-5760-8961-b790127b2785", "id": "CVE-2022-41915", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-41915 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fe4e3bfd-6b99-5118-98f7-36647f12886c", "id": "CVE-2023-34462", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-34462 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3e2946a7-432c-574c-b974-9fb6d403b17a", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.73.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b15c2be7-8b8f-58c6-850f-8e5bf1fa9ab9", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-parent 4.1.73.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a540fb09-86ed-5f03-8e46-e586b697626c", "id": "CVE-2024-29025", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-29025 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e5835f37-b81b-5730-9006-979de83afe63", "id": "CVE-2024-47535", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47535 is fixed in version 4.1.73.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f008ec31-ce70-5f87-a28f-245fceaff615", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.73.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:779a7e75-ff03-5f0b-96dd-197ce0b2ad78", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6dfe31b7-5503-5cd5-84aa-ca2c8fe867a0", "id": "CVE-2025-55163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55163 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1ea9b174-3c39-551c-831c-8242773ce97d", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:778b703c-7aef-5c09-8a5e-5bbf3c20d834", "id": "CVE-2025-58057", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58057 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:71f6bbaf-6bfd-5113-830e-1669ee609185", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.73.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:394f8fc1-3b65-553a-a8f8-53facda68db9", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:61f719e7-b20f-59d3-b430-20e0eefba643", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:858b5f57-0311-56b9-9094-45fc943b8491", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b74728c9-364d-5f9c-9604-938010404efa", "id": "CVE-2026-41417", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41417 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e9c498f4-4acb-5fbf-a305-e5d1f3533deb", "id": "CVE-2026-42577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42577 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:639acb89-9a47-53cc-ab60-59fa54c152ea", "id": "CVE-2026-42578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42578 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3518c492-a1f3-52cc-98a7-d1c43115b7e7", "id": "CVE-2026-42579", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42579 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7b7f28ab-1920-5d05-9cfa-d2532f1d299a", "id": "CVE-2026-42580", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42580 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:77e6e0c5-75ef-5941-9fbe-a4ed32775e41", "id": "CVE-2026-42581", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42581 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:36723cdc-cb3c-5826-98a1-c3dbeb51c844", "id": "CVE-2026-42584", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42584 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f7b1797b-1d8a-5b31-8875-e7143261eeab", "id": "CVE-2026-42585", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42585 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dbff6316-3ef5-581a-b931-1d27473b22b4", "id": "CVE-2026-42586", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42586 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:34f61d33-6244-554f-b9d3-959266b94358", "id": "CVE-2026-42587", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42587 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5e1fa3c9-c4bb-5135-9703-ebc84caa064c", "id": "CVE-2026-44248", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44248 affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.73.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5def9269-c78f-557b-b382-3770064665b1", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.73.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.73.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.73.Final-tuxcare.1" } ] }