{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:09db8ab7-dcc7-55b0-9089-1d87069c8bbc", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.63.Final-tuxcare.2", "type": "library", "group": "io.netty", "name": "netty-testsuite-http2", "version": "4.1.63.Final-tuxcare.2", "purl": "pkg:maven/io.netty/netty-testsuite-http2@4.1.63.Final-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:d0373d89-3a46-5527-9a8a-a74b2189842b", "id": "CVE-2021-37136", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37136 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:651f5546-78d2-519a-bea9-08239661a508", "id": "CVE-2021-37137", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37137 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5a6da87c-5d15-5eb1-9121-af9b40d27c2d", "id": "CVE-2021-43797", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-43797 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2a739923-4230-5882-9cfa-9a52ca6eba47", "id": "CVE-2022-24823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24823 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e3bf8b98-9619-5dc6-ab27-147b15c11d9e", "id": "CVE-2022-41881", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41881 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cdab4ddf-f53c-59ea-adf8-4b4a63ffa9a7", "id": "CVE-2022-41915", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41915 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5fa829f2-2f17-5058-987a-9e1655dd8b0e", "id": "CVE-2023-34462", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34462 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d8df5adc-4904-5b35-a902-b5c385846d6b", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1d66bc25-9869-5b24-a562-752e27ed95de", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-testsuite-http2 4.1.63.Final-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c15b6051-9dc7-5df3-9949-e14fe9a5c8f7", "id": "CVE-2024-29025", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-29025 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e756723d-3160-5ed2-a72c-3679c6ec79d0", "id": "CVE-2024-47535", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47535 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e2afc4e9-333a-5c09-8d4c-5ddac2dd2b29", "id": "CVE-2025-24970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24970 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b63e30c3-dd77-5bff-8cab-05260e4b45c8", "id": "CVE-2025-25193", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-25193 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1d4b5eed-1220-5099-bf10-9d2a487e9dff", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6672db79-863b-5836-b552-01ab56a85a5b", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9d15eeb0-4b1f-5e5e-b2dc-ffedbb96481e", "id": "CVE-2025-58057", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58057 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a6e813ee-3e14-5e9b-a36f-17f6c12ad551", "id": "CVE-2025-59419", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59419 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:455ec24f-457a-5062-8bb9-dc0d235b6d6f", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:785bbe4e-cc07-5657-a829-12f0dc0c579e", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4d4e1526-3d8d-5ad2-86c7-079c3a0faa81", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:be9a65e0-6f97-56c9-844d-23fb77a951ea", "id": "CVE-2026-41417", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41417 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bc34841b-978e-5620-86eb-2598c9d6975e", "id": "CVE-2026-42577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42577 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:71a959cd-3425-53e1-8bf1-1ee6f763f8bb", "id": "CVE-2026-42578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42578 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e8156464-4a7b-5a11-9bc4-2b3cdd6b05f1", "id": "CVE-2026-42579", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42579 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a5317868-b385-5c35-8604-fb73974e595e", "id": "CVE-2026-42580", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42580 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:eee56ccd-3d3c-5f33-8cec-e56d29162179", "id": "CVE-2026-42581", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42581 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e35cba9a-b262-571e-ab6f-bf706094414f", "id": "CVE-2026-42584", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42584 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f0a76912-ce33-5df4-b728-62ab197022bf", "id": "CVE-2026-42585", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42585 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9dc3b4aa-6989-5660-b314-5446108967cd", "id": "CVE-2026-42586", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42586 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ac2cd09f-b9e1-5dff-a89c-7c8295257214", "id": "CVE-2026-42587", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42587 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e76d1acb-8919-59ad-959b-86141ff25620", "id": "CVE-2026-44248", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44248 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d3c756bd-fc79-5abf-9679-66236fc866fe", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-testsuite-http2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.63.Final-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-testsuite-http2@4.1.63.Final-tuxcare.2" } ] }