{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:ee145461-ea9d-5ca0-9b75-9459dd5f1cb7", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-common@4.1.52.Final-tuxcare.2", "type": "library", "group": "io.netty", "name": "netty-common", "version": "4.1.52.Final-tuxcare.2", "purl": "pkg:maven/io.netty/netty-common@4.1.52.Final-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:08280fd8-4ef4-54a5-8a86-8ffbcf928634", "id": "CVE-2021-21290", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-21290 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8415303e-6554-5128-b4bc-e303f0f246bf", "id": "CVE-2021-21295", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-21295 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:05391d11-e4a9-5c68-b70a-785facde6521", "id": "CVE-2021-21409", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-21409 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e021566d-21e2-5c1f-8c60-479de1f9003d", "id": "CVE-2021-37136", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37136 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5a34f7f2-4d84-5124-83dd-536a573334dd", "id": "CVE-2021-37137", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37137 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:074f48d5-92fc-556a-8d37-5a1abbd0935a", "id": "CVE-2021-43797", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-43797 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cd0d6d20-7a3d-5155-a571-217ae2c20456", "id": "CVE-2022-24823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24823 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:84f00a08-5f16-5cdf-bca2-e9e1abc52b26", "id": "CVE-2022-41881", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41881 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0f3a45a3-c60a-5597-8fb0-f5ca76106833", "id": "CVE-2023-34462", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34462 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e2c08109-e2a7-5f2a-b655-e12f2e2eecfc", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:33be375d-39c3-5d2a-a3b2-a0749e278c8d", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-common 4.1.52.Final-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5e28e3dd-d8d0-5999-88dc-d119e2ef0f55", "id": "CVE-2024-29025", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-29025 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a1615d9b-ae31-5ff8-a6ac-1afc41c047af", "id": "CVE-2024-47535", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47535 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:453e7e6d-f3bc-549c-b20a-30c961082efe", "id": "CVE-2025-24970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24970 affects version 4.1.52.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2729dc56-5dbc-5ee7-8470-6631d5149a1f", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.52.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:78faa500-cb2f-5840-812f-d4f438779a1d", "id": "CVE-2025-55163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55163 affects version 4.1.52.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:dcb8a490-c742-594a-881d-1e3e7f308e4b", "id": "CVE-2025-58056", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58056 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1ec70cac-e605-55b7-90c8-93cd9c061121", "id": "CVE-2025-58057", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58057 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1940683a-d535-5424-b982-a9fab511a935", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2a996575-0efd-5d37-b6ae-993b8df4bd3a", "id": "CVE-2025-67735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-67735 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5411b7b1-6f2d-5f00-901e-407eb2dc9cd0", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.52.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:10bdeb88-ae99-50be-8846-9d14fa922dd6", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.52.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ddf88a1f-857f-5cc7-9982-21d694b22e8b", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "resolved", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-common." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.52.Final-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-common@4.1.52.Final-tuxcare.2" } ] }