{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:801d6f5f-ffba-5ecd-b8c2-3e194378ef65", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.49.Final-tuxcare.1", "type": "library", "group": "io.netty", "name": "netty-testsuite-osgi", "version": "4.1.49.Final-tuxcare.1", "purl": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.49.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:75c03f4f-59af-5c60-b84e-ca9ac03db38c", "id": "CVE-2021-21290", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-21290 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c3cbea37-964d-585c-a0b4-f404a196ff87", "id": "CVE-2021-21295", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-21295 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fc71a9ae-1d85-5b18-80ad-a490ea6cf019", "id": "CVE-2021-21409", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-21409 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:db7d7664-7f30-55d8-aded-996eb514bafd", "id": "CVE-2021-37136", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37136 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dd1db027-ce98-551a-a5a6-996601548dd0", "id": "CVE-2021-37137", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37137 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ff53b1a3-a83b-5100-922d-9faf669007f4", "id": "CVE-2021-43797", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-43797 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:53605168-b076-5454-85bc-ec9f74580ecb", "id": "CVE-2022-41881", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-41881 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e57c791d-ce17-52ac-a028-00187eb64b71", "id": "CVE-2022-41915", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-41915 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bdb73733-36e5-5339-9eaa-6202dde1d6db", "id": "CVE-2023-34462", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34462 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cc2a1906-6b3b-5111-9738-0f372f5ab644", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:23e0f1de-a1ca-5bdf-aa07-17727d174c93", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-testsuite-osgi 4.1.49.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e6c57c09-e03b-5b15-9b1f-0701b6d51476", "id": "CVE-2024-29025", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-29025 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bc6ecfdb-6226-5df0-97ef-a5f74e1ee517", "id": "CVE-2024-47535", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-47535 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:495a1316-f9eb-5d43-b1b1-a6e863020fed", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ad8ce5b3-86f4-5b55-979d-abe52a0ef48e", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:73ee3a6a-fa36-5121-82b1-e360e4cdb2d9", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:72b5abc7-4e70-543c-85d5-55335b71f9fb", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2f893c56-7aca-516c-a42b-3b56c72baba9", "id": "CVE-2025-58057", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58057 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e264bfa6-1e4a-5c06-a3c1-78ba7a7409ad", "id": "CVE-2025-59419", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59419 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:57b54114-558e-502e-92f4-f694dbe90b3f", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:51527be4-a869-583d-9e27-01f02b2614a6", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:118685b0-aaaa-505c-b652-45f9be506bfc", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:06c45e27-da98-5f49-86ed-12049aa128d8", "id": "CVE-2026-41417", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41417 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:eb3ca962-cc2c-5ac2-83ef-cc1afc4cea63", "id": "CVE-2026-42577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42577 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:24447279-00e8-5cd1-a935-158869607f16", "id": "CVE-2026-42578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42578 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:05f584b0-95df-58b3-8cae-023fef619383", "id": "CVE-2026-42579", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42579 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c2ecf508-ea88-584e-b24a-0945760da93d", "id": "CVE-2026-42580", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42580 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:60cc0b75-09bf-51eb-96a5-337ac1b743e9", "id": "CVE-2026-42581", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42581 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bdab8959-2e6f-5e14-b306-11cce7b35023", "id": "CVE-2026-42584", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42584 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fd6525e7-0d37-580f-9352-86c17d9e0bbc", "id": "CVE-2026-42585", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42585 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1b3a7a34-0dee-569c-b697-12eb5b1193a7", "id": "CVE-2026-42586", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42586 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:872ae8fe-eb03-5dc3-950c-043890b937dc", "id": "CVE-2026-42587", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42587 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7143a42f-bf67-5942-9267-e83f3ef7e616", "id": "CVE-2026-44248", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44248 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:270c0946-b5ca-5ea5-93d1-a307c2d449cc", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-testsuite-osgi." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.49.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-testsuite-osgi@4.1.49.Final-tuxcare.1" } ] }