{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:d5f01ddf-4f08-52b1-a919-4bcc1666e10b", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-codec-dns@4.1.52.Final-tuxcare.2", "type": "library", "group": "io.netty", "name": "netty-codec-dns", "version": "4.1.52.Final-tuxcare.2", "purl": "pkg:maven/io.netty/netty-codec-dns@4.1.52.Final-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:8d8dddab-96a9-58d3-af70-d3c23e159582", "id": "CVE-2021-21290", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-21290 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7fe50a23-0418-5de7-999b-c032beaeffff", "id": "CVE-2021-21295", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-21295 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d6fbf5cb-4191-5d99-a16e-b16941bf6ed3", "id": "CVE-2021-21409", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-21409 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ebdd309e-5daf-5c1f-837b-880613081c9c", "id": "CVE-2021-37136", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37136 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3922ebab-69a1-5843-b867-a8d26ae6c976", "id": "CVE-2021-37137", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37137 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:951b0010-1c0d-5c8a-8653-268b30ef0a8e", "id": "CVE-2021-43797", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-43797 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:955b1fd1-4655-565f-9ad4-7e9289d11d20", "id": "CVE-2022-24823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24823 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0ff6ab43-689c-5ff9-9639-d07d27cf5e2d", "id": "CVE-2022-41881", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41881 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ee244fa8-c9bb-58cd-9b9b-f8caf3393440", "id": "CVE-2023-34462", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34462 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2e5ff813-7597-5e3c-b77b-58d317def286", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4071ba9b-3979-5940-ac02-ea4011fff3a1", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-codec-dns 4.1.52.Final-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:79aac3b7-d5de-52e1-99d4-7d5eabb81c70", "id": "CVE-2024-29025", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-29025 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ab72ddb4-93f4-5929-a1c6-dd26a3d8de06", "id": "CVE-2024-47535", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47535 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7d8fece8-4703-559b-9bcc-2dcf31c54ed3", "id": "CVE-2025-24970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24970 affects version 4.1.52.Final-tuxcare.2 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e188370a-0383-5dc1-b064-f83e6021d46b", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.52.Final-tuxcare.2 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d8709052-520b-560f-809c-e9c85da0372b", "id": "CVE-2025-55163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55163 affects version 4.1.52.Final-tuxcare.2 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5c3650ca-3612-58aa-b4cb-160403961750", "id": "CVE-2025-58056", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58056 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ad4a9765-2183-5062-bafa-a9675e823bef", "id": "CVE-2025-58057", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58057 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b5b7ccc7-ac4f-5af1-b515-a74b470c8e5c", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fcccb39c-90ed-5db4-9791-3999a4be96f6", "id": "CVE-2025-67735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-67735 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:77599e0e-d4cf-5362-b099-943d379becce", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.52.Final-tuxcare.2 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d8034c2a-a461-5ca8-be74-b08b55147c5d", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.52.Final-tuxcare.2 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:05f0cf50-3e88-5f4e-960b-c348d634fd86", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "resolved", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-codec-dns." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.52.Final-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-codec-dns@4.1.52.Final-tuxcare.2" } ] }