{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:1520f1f0-0c30-5bcd-b12d-b67832c1991e", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-handler@4.1.52.Final-tuxcare.2", "type": "library", "group": "io.netty", "name": "netty-handler", "version": "4.1.52.Final-tuxcare.2", "purl": "pkg:maven/io.netty/netty-handler@4.1.52.Final-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:9c443246-ba4a-5dea-80b2-2de774617c1c", "id": "CVE-2021-21290", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-21290 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f5e924bb-f751-5fa1-b7e0-6ca95b3543f9", "id": "CVE-2021-21295", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-21295 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f026525e-e3a1-5f8b-a78a-f3aa32a2cb96", "id": "CVE-2021-21409", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-21409 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:488b0299-f12e-5b61-af22-38ec25697de1", "id": "CVE-2021-37136", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37136 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:56de4947-10db-5d4d-8e6c-82f67fba25d2", "id": "CVE-2021-37137", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37137 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9443e784-791f-55eb-af7c-3e02424e7227", "id": "CVE-2021-43797", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-43797 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:10cc2741-3c77-570a-8738-20e6321c9c84", "id": "CVE-2022-24823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24823 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a52ee249-c652-5d23-9890-151c9d4aead2", "id": "CVE-2022-41881", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41881 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1c8f47a9-0adf-5efc-b733-119568123df9", "id": "CVE-2023-34462", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34462 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:48cf01fb-5db2-5f7f-a545-d3852267d591", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:199c1cf3-646e-5c40-8d32-3e2916914726", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-handler 4.1.52.Final-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9c623c44-635d-5918-ad78-8aefa496c588", "id": "CVE-2024-29025", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-29025 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:95cf5138-ff91-5a9e-992e-78c0eb07ad66", "id": "CVE-2024-47535", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47535 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a2a79911-3da0-5ac8-9738-d78f983e1685", "id": "CVE-2025-24970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24970 affects version 4.1.52.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:77f89621-4d40-572a-9981-52b614642b47", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.52.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a38febb5-5297-5d12-be7d-1b1d1c7f7529", "id": "CVE-2025-55163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55163 affects version 4.1.52.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:08846409-1609-5f3f-981c-aaa963a80f56", "id": "CVE-2025-58056", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58056 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:866c4127-7c75-58cd-8ad1-662ca8450de7", "id": "CVE-2025-58057", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58057 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2f0e04b6-d13c-5914-aae1-907ef582c11e", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:aa0fe841-0d92-5683-9424-2739f630ae4f", "id": "CVE-2025-67735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-67735 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e1192aeb-ac00-5a1a-b3ed-366677bedd1c", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.52.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:44abaa55-73a5-5873-87a8-d6845eeeaa8d", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.52.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:639663dd-8d73-53e4-b481-38d3ab84c8b3", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "resolved", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.52.Final-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.52.Final-tuxcare.2" } ] }