{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:cac7d6fc-19ef-5c87-9957-07706e2a86fd", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-bom@4.1.52.Final-tuxcare.2", "type": "library", "group": "io.netty", "name": "netty-bom", "version": "4.1.52.Final-tuxcare.2", "purl": "pkg:maven/io.netty/netty-bom@4.1.52.Final-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:8bb2c424-9033-51dd-ab29-2e572d06b39d", "id": "CVE-2021-21295", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-21295 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:04924086-a7b1-5c17-a0c1-cffa2c8892ce", "id": "CVE-2021-21409", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-21409 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:93f6b477-9248-5d0e-9c65-25dc95caba36", "id": "CVE-2021-37136", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37136 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9b3ccd7a-468f-5522-b3e6-2e8ffe0c02c3", "id": "CVE-2021-37137", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37137 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7bcde86c-1a55-567b-9598-c8344a2d1660", "id": "CVE-2021-43797", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-43797 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:37a15a25-4619-50b6-b5a0-f29200590c49", "id": "CVE-2022-24823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24823 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bcd723a8-ef0f-54cb-a6d9-294a3f8e8af0", "id": "CVE-2022-41881", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41881 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:88658b02-bed0-5a55-98df-9e5ec19ab889", "id": "CVE-2023-34462", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34462 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:13b658df-552d-5fad-8e6c-0954b9791e76", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ba49b61a-6dbd-5916-970c-9bbdf31cf854", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-bom 4.1.52.Final-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:52f01712-91b8-51f2-9995-0538e46a643c", "id": "CVE-2024-29025", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-29025 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3741cea7-0f61-524e-b2f6-c752ebdae6d4", "id": "CVE-2024-47535", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47535 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:40a18ac3-bef3-5f42-bc37-1de29632c3dc", "id": "CVE-2025-24970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24970 affects version 4.1.52.Final-tuxcare.2 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a7ae1021-d5bc-5afa-a532-6e0ceef110bc", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.52.Final-tuxcare.2 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b7c63e49-7826-5b42-90bc-c684e4fca73f", "id": "CVE-2025-55163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55163 affects version 4.1.52.Final-tuxcare.2 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ec5e6ca6-c0a9-5a6c-a313-24738d0a508b", "id": "CVE-2025-58056", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58056 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3e418bca-69c8-5c77-891f-3a19eeee3b3a", "id": "CVE-2025-58057", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58057 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9e298e42-0a08-5150-ac72-877e14fca0bd", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:506aef66-4228-5373-94c3-bf20c75754b7", "id": "CVE-2025-67735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-67735 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4cdbb7f6-d467-546b-85e6-8c9de98af2c6", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.52.Final-tuxcare.2 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1321878f-a601-5275-8c89-26503c9a28d9", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.52.Final-tuxcare.2 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b0f04076-5721-5144-addc-fe83e14096b9", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "resolved", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-bom." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.52.Final-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-bom@4.1.52.Final-tuxcare.2" } ] }