{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:9eafb510-df27-532d-b44e-98b9e0cf4294", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-buffer@4.1.112.Final-tuxcare.3", "type": "library", "group": "io.netty", "name": "netty-buffer", "version": "4.1.112.Final-tuxcare.3", "purl": "pkg:maven/io.netty/netty-buffer@4.1.112.Final-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:80cbc477-6135-5f14-84f9-03232dbf720f", "id": "CVE-2024-47535", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-47535 affects version 4.1.112.Final-tuxcare.3 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.112.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5cfbca01-853b-5f08-b874-fd738bf775ae", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.112.Final-tuxcare.3 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.112.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:19ac8c22-0329-502f-a075-05d657407004", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.112.Final-tuxcare.3 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.112.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5df2c651-0e55-5c56-a98e-3c8f32c7ac5b", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.112.Final-tuxcare.3 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.112.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4e4b8ae8-fc3a-586d-8a7d-28f810de9974", "id": "CVE-2025-58056", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58056 is fixed in version 4.1.112.Final-tuxcare.3 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.112.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3638cc66-f2af-50d9-a230-e9b2a0f82194", "id": "CVE-2025-58057", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58057 is fixed in version 4.1.112.Final-tuxcare.3 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.112.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e3a752b4-4fe4-5feb-b670-6b922ed10974", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.112.Final-tuxcare.3 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.112.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e4f364e7-179b-589e-bdf3-551dc5d22f52", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.112.Final-tuxcare.3 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.112.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ee71a69d-0805-5c3d-b6ec-ef5d3e4ae76c", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.112.Final-tuxcare.3 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.112.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:87e80ecf-f7d8-5358-bdd9-5006f322d1d0", "id": "CVE-2026-33871", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-33871 is fixed in version 4.1.112.Final-tuxcare.3 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.112.Final-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.112.Final-tuxcare.3" } ] }