{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:5cc2c417-dd08-5739-aebf-73cd843b0948", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.2", "type": "library", "group": "io.netty", "name": "netty-transport", "version": "4.1.63.Final-tuxcare.2", "purl": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:453ed99c-769d-5b4d-9912-833eceb5ce03", "id": "CVE-2021-37136", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37136 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:30969c41-adb7-523b-b58e-8f4a2830033b", "id": "CVE-2021-37137", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37137 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:37e40e40-59ee-59aa-9334-32b0dcc1f27a", "id": "CVE-2021-43797", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-43797 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:28625086-697b-5cab-9f7c-15ad6ffd9480", "id": "CVE-2022-24823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24823 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e659590c-aac8-5476-96d1-cd0a6f37d38e", "id": "CVE-2022-41881", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41881 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d7cdfe9a-3b6c-5ab2-8c0c-1921b9def995", "id": "CVE-2022-41915", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41915 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:acd73e9d-ae64-5b64-8dab-ac44a76c5291", "id": "CVE-2023-34462", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34462 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7525ca93-a24c-5e31-935e-bb6c3d2bf7bd", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:382aadbb-7105-592e-90c6-f89be341a5b7", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-transport 4.1.63.Final-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:90a50856-eb63-51d4-b534-d12dd276705a", "id": "CVE-2024-29025", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-29025 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d0209b3e-51cc-52f1-aacd-bf4c7b0caca8", "id": "CVE-2024-47535", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47535 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6b30e775-edc2-551f-aea0-7c24e5941d74", "id": "CVE-2025-24970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24970 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:50a7f6f3-b9af-5b61-a763-3fb8d769ca76", "id": "CVE-2025-25193", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-25193 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:74ce0fae-54cf-5f0e-bd74-4d6960d05fb0", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:86970077-f663-5e77-aa82-7ae8f8cef1ab", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6b0a275c-e108-531f-8c3b-0d2f1bd99376", "id": "CVE-2025-58057", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58057 is fixed in version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b71fb0df-4240-5efd-8677-b13cd65684f6", "id": "CVE-2025-59419", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59419 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e9456a0c-0def-53fc-bb02-8bc3a17c95fd", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fe2a5a03-e781-57ba-970b-e583f57c2413", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:aa9b68e5-12c6-5e5e-8dfc-1a4cf293ef06", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f73fb760-5d79-577b-87e8-9a706f88044c", "id": "CVE-2026-41417", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41417 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:217238b3-5e2e-5a4e-9885-0ab1ec0414c4", "id": "CVE-2026-42577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42577 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1ce7f1d8-555f-50bf-aed9-92ab6992e3fe", "id": "CVE-2026-42578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42578 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:da5d7982-1a2d-5bc5-bc34-90c785f4355b", "id": "CVE-2026-42579", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42579 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a50cfca9-4917-5672-8a2a-c1c4b6b0bdf9", "id": "CVE-2026-42580", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42580 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8b06de9c-84a9-5b1a-86b9-3c29d72eaedd", "id": "CVE-2026-42581", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42581 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:db496ef8-4865-53dc-a53e-31c93e73b72c", "id": "CVE-2026-42584", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42584 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4361ccfb-70ae-5d9f-85bc-a5fe7b769b4f", "id": "CVE-2026-42585", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42585 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:794fa85c-4548-5a2f-a5fa-a80fb0e6181b", "id": "CVE-2026-42586", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42586 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1fd6f250-6a8f-554a-bd98-09d2ecb312d6", "id": "CVE-2026-42587", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42587 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:25c5f93b-3859-56a8-9ec1-4eaa01657919", "id": "CVE-2026-44248", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44248 affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9755d156-9b99-5c36-bc21-5e938912d5da", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.63.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.2" } ] }