{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:8fb2c6f7-0a19-5152-a2ec-cd079d2490b9", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-resolver@4.1.58.Final-tuxcare.2", "type": "library", "group": "io.netty", "name": "netty-resolver", "version": "4.1.58.Final-tuxcare.2", "purl": "pkg:maven/io.netty/netty-resolver@4.1.58.Final-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:8ac39bd9-7146-52b1-aee8-d974b8e4c1b0", "id": "CVE-2021-21290", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-21290 is fixed in version 4.1.58.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8db656fb-ba88-50c7-b425-1ffb0fecb10d", "id": "CVE-2021-21295", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-21295 is fixed in version 4.1.58.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ee90347b-84ab-58ce-ad05-a685ea90bed4", "id": "CVE-2021-21409", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-21409 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a1532d62-9c33-5db1-a5d0-0df2faf90c66", "id": "CVE-2021-37136", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37136 is fixed in version 4.1.58.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:dd5bd324-b5fa-5214-a7fc-b7e7c6bfd6b3", "id": "CVE-2021-43797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-43797 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7ee48c10-34e7-5f45-8ac6-05b33ed60894", "id": "CVE-2022-24823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24823 is fixed in version 4.1.58.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:22da44e0-0e95-5bda-9d9e-67b6cbce5e6f", "id": "CVE-2022-41881", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41881 is fixed in version 4.1.58.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6c88297f-e225-5b49-83c6-66fd5a5bfeff", "id": "CVE-2023-34462", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34462 is fixed in version 4.1.58.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3b21674c-3ecd-5c72-b24c-f24456a91425", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.58.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e0f9c30b-f2a0-5313-9791-aaefddf72ea0", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-resolver 4.1.58.Final-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fdc8c158-d3b0-52c3-a38e-449fb59fa2cf", "id": "CVE-2024-29025", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-29025 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9614315c-c40c-5663-9efd-1774b28d9870", "id": "CVE-2024-47535", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47535 is fixed in version 4.1.58.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:14ce99c8-5bbe-5c0a-8a27-eb2cfbe31efc", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.58.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:68ae3294-4470-5745-ab36-58ebae96bac8", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5d41b30c-5d00-563b-a6b3-7cd8f6a0f26e", "id": "CVE-2025-55163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55163 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bea6ccb6-ecb4-568b-a8d4-1729c8afba85", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7ca9ee74-c29b-5e89-80bb-543781a880e7", "id": "CVE-2025-58057", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58057 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c5e7715a-56b1-52af-aefb-35d416c270c6", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.58.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:104db2f3-188d-5ad3-84d5-8aedc805faaa", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a4b0d37d-5884-5f88-8aaa-9175c0b11351", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a08533b9-067f-589c-a2bf-453efe31bbff", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8e7d2b1a-89a6-52d0-aea4-3e433a9e4405", "id": "CVE-2026-41417", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41417 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:88eef712-cf49-571d-a038-e0e6dbe348d2", "id": "CVE-2026-42577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42577 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c107199c-6aa3-573e-ae5c-c3c49f2da072", "id": "CVE-2026-42578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42578 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:41bf4412-604c-52c6-98fa-aa740fd9558d", "id": "CVE-2026-42579", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42579 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:93c4a955-0ba6-58f0-86e3-87e1f03977f1", "id": "CVE-2026-42580", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42580 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:55165168-91d1-5208-b947-541ed80dcd0c", "id": "CVE-2026-42581", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42581 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a5478921-50e8-50f4-9a77-688d80b67dc5", "id": "CVE-2026-42584", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42584 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b8f68d9e-bd25-570e-b327-0b58dbe498eb", "id": "CVE-2026-42585", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42585 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:36f38285-837f-5feb-ae7d-689a7fc15b49", "id": "CVE-2026-42586", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42586 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8cf9f04c-0a7f-56fd-91b7-74ca2d52beb7", "id": "CVE-2026-42587", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42587 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:12407984-ba3a-5cbb-8927-ebe619ffb4bd", "id": "CVE-2026-44248", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44248 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ced67d1a-3951-5d60-a233-69d7bdcbdb38", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.58.Final-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.58.Final-tuxcare.2" } ] }