{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:83e99031-4e2e-5458-849a-67126849bb6a", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-transport@4.1.52.Final-tuxcare.2", "type": "library", "group": "io.netty", "name": "netty-transport", "version": "4.1.52.Final-tuxcare.2", "purl": "pkg:maven/io.netty/netty-transport@4.1.52.Final-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:e3be745f-6748-5e32-bc22-211a2cb034a3", "id": "CVE-2021-21290", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-21290 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1d44dbf0-1f8d-5c5d-90af-06b61dc495df", "id": "CVE-2021-21295", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-21295 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d6957bc2-846f-591a-b87d-dca2b62acb71", "id": "CVE-2021-21409", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-21409 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:95101526-3a5e-5e4d-af26-f765af2657be", "id": "CVE-2021-37136", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37136 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:370c15e8-7fff-5927-b06e-c162eff87623", "id": "CVE-2021-37137", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37137 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9a2ed9e5-4f9e-56f2-a0eb-b50a9e3ed97c", "id": "CVE-2021-43797", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-43797 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:16027ef2-6a0a-5a0c-89e7-eeb32c80cddc", "id": "CVE-2022-24823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24823 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6e0b9a3f-5443-53a5-b2e1-2db5b189faad", "id": "CVE-2022-41881", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41881 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6e9e7d32-10e0-5201-8917-cadc85d4dc64", "id": "CVE-2023-34462", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34462 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:220a9591-83d3-5d90-b1ff-3a303556489f", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9a462345-b007-5bac-afa2-d67f2a1a4877", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-transport 4.1.52.Final-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ba52928d-0ce6-5b19-b0c6-6780d5269711", "id": "CVE-2024-29025", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-29025 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d7bfaf88-7720-5419-a848-d99ad9d28d60", "id": "CVE-2024-47535", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47535 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9f9d4bcf-aa5e-5da4-a02c-1e8c221118e1", "id": "CVE-2025-24970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24970 affects version 4.1.52.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:44a7d435-27d2-5b38-9023-e033431c26e7", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.52.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8d45c78b-ed3f-551b-a238-c233f214d327", "id": "CVE-2025-55163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55163 affects version 4.1.52.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ae5cd818-6aab-5226-b9e2-edf8802ffa3e", "id": "CVE-2025-58056", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58056 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1ca49add-56a5-5bb8-ba17-45bf84f6e049", "id": "CVE-2025-58057", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58057 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8af91d07-d794-5105-b83e-06d048b15a5e", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7d0fd1ca-3d9b-52fd-94d3-cfb080e57e45", "id": "CVE-2025-67735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-67735 is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d18f24fb-282e-5793-be0a-02c9c69468e8", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.52.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2ef9e9e9-1876-58b9-83e8-10c79d5882b6", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.52.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.52.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c2341c62-a2e9-562f-964d-1e1f82aca8a8", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "resolved", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p is fixed in version 4.1.52.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.52.Final-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.52.Final-tuxcare.2" } ] }