{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:26b89f6e-78c1-533e-8089-5fa62e907601", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-resolver@4.1.60.Final-tuxcare.2", "type": "library", "group": "io.netty", "name": "netty-resolver", "version": "4.1.60.Final-tuxcare.2", "purl": "pkg:maven/io.netty/netty-resolver@4.1.60.Final-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:82472035-52e7-5627-ac73-fa86bc8ce70c", "id": "CVE-2021-21409", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-21409 is fixed in version 4.1.60.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:eb740535-91a1-59fc-abf4-d76dca6efda4", "id": "CVE-2021-37136", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37136 is fixed in version 4.1.60.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0c0e32eb-acfb-52e0-9e72-0c91a085d732", "id": "CVE-2021-37137", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37137 is fixed in version 4.1.60.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c8510fb9-e3c5-54bb-a90b-fea9c10958e7", "id": "CVE-2021-43797", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-43797 is fixed in version 4.1.60.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5f74bee8-c45d-5f47-ab4d-c9424daa44d0", "id": "CVE-2022-24823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24823 is fixed in version 4.1.60.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bad3dc65-422c-54e6-8cbb-4084c8dd3273", "id": "CVE-2022-41881", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41881 is fixed in version 4.1.60.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3cf67a5f-223b-5d9c-987b-640134a9aeff", "id": "CVE-2023-34462", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34462 is fixed in version 4.1.60.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d794a241-c1e1-558a-a377-173d16a32789", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 4.1.60.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1522679b-5728-5c40-921a-08e6830a3dc0", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-resolver 4.1.60.Final-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d9ed80a6-f5a0-5ffa-84a6-3090386b4aa2", "id": "CVE-2024-29025", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-29025 is fixed in version 4.1.60.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:58cbc1d7-d996-5908-8748-b41b73a7e4d8", "id": "CVE-2024-47535", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47535 is fixed in version 4.1.60.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9323fb92-b383-5d58-ad49-9685a57eeebc", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.60.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ab444da4-9e98-5eb2-a027-b46c0e2a055c", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.60.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cc8081cb-3f6f-593d-86f9-e72ba6d1a58f", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.60.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:257a95e8-791d-5967-b213-f7e02a846f8a", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.60.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:297ab4a8-af96-53ce-9476-1ed11111d7c8", "id": "CVE-2025-58057", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58057 is fixed in version 4.1.60.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ba8f40eb-f92f-5514-82e0-b5695a395c09", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.60.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c050dd20-30d5-5478-bb2f-df1783e0e4c4", "id": "CVE-2025-67735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-67735 is fixed in version 4.1.60.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:48ec46b8-f622-5d40-a6f0-379e5827c95a", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.60.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ffe33ca0-e228-5664-accc-ea878a59df5a", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.60.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:270e3a6e-7a14-5b82-b603-3c06621d49af", "id": "CVE-2026-41417", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41417 affects version 4.1.60.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:32be6fa1-c8b5-59d4-95c9-3f07d09be08f", "id": "CVE-2026-42577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42577 affects version 4.1.60.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1739a6fd-1f1a-5561-81e9-5826d87e4bfc", "id": "CVE-2026-42578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42578 affects version 4.1.60.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d5b02e55-7d13-54f8-b1e4-286135ff31bf", "id": "CVE-2026-42579", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42579 affects version 4.1.60.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5cdf19fb-1efa-55dd-86dd-09cd945e54b6", "id": "CVE-2026-42580", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42580 affects version 4.1.60.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:596fe74a-a44a-5da5-ae8d-b76726961ba4", "id": "CVE-2026-42581", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42581 affects version 4.1.60.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ee1ccb10-a1fc-5256-b9df-a7fe21fa07f4", "id": "CVE-2026-42584", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42584 affects version 4.1.60.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:dacba35f-d5f4-5800-8ec8-672b13eaeb47", "id": "CVE-2026-42585", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42585 affects version 4.1.60.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a0c88395-c6f9-5578-a164-448bcb2b06c2", "id": "CVE-2026-42586", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42586 affects version 4.1.60.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:230a9de9-8b29-5be3-83a7-b91d760afa0d", "id": "CVE-2026-42587", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42587 affects version 4.1.60.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0341cd96-e8a5-555d-b743-30dd09dbb194", "id": "CVE-2026-44248", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44248 affects version 4.1.60.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.60.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c3221c19-1a69-5955-8b43-3086f4ba47d5", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "resolved", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p is fixed in version 4.1.60.Final-tuxcare.2 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.60.Final-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.60.Final-tuxcare.2" } ] }