{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:9a6a04e2-4120-52af-b235-595e09a20186", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-transport@4.1.112.Final-tuxcare.3", "type": "library", "group": "io.netty", "name": "netty-transport", "version": "4.1.112.Final-tuxcare.3", "purl": "pkg:maven/io.netty/netty-transport@4.1.112.Final-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:b9823bc9-7e38-5da2-a6f3-eb37ee2d49aa", "id": "CVE-2024-47535", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-47535 affects version 4.1.112.Final-tuxcare.3 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.112.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b029cd4b-d722-5aa8-a780-05d1e361f992", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.112.Final-tuxcare.3 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.112.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5e0758ef-f0a8-5a94-884b-5d50b35c14f2", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.112.Final-tuxcare.3 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.112.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ad254301-38b7-5fc2-8efc-021266d140e0", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.112.Final-tuxcare.3 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.112.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:99e16ff3-037b-5a4e-9f2c-6ae252ea0ce3", "id": "CVE-2025-58056", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58056 is fixed in version 4.1.112.Final-tuxcare.3 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.112.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:db7739b8-7afa-51ba-b5ac-55fd0ff38975", "id": "CVE-2025-58057", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58057 is fixed in version 4.1.112.Final-tuxcare.3 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.112.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:511720c1-2e1d-546b-aa4f-ed1e45811b9a", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.112.Final-tuxcare.3 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.112.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:68f3db15-d7b2-54e1-8088-af24055de326", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.112.Final-tuxcare.3 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.112.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d4f85daa-5b42-5ff7-9b07-bbd073190ee9", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.112.Final-tuxcare.3 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.112.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f820d4c6-8c32-5af4-8c29-9bf7f02d1a23", "id": "CVE-2026-33871", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-33871 is fixed in version 4.1.112.Final-tuxcare.3 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.112.Final-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.112.Final-tuxcare.3" } ] }