{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:9ca02665-ca7c-5e37-ac52-9dc0f81e50a4", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-parent@4.1.82.Final-tuxcare.1", "type": "library", "group": "io.netty", "name": "netty-parent", "version": "4.1.82.Final-tuxcare.1", "purl": "pkg:maven/io.netty/netty-parent@4.1.82.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:135b23ea-e092-5f8c-b104-93ff00fab4bb", "id": "CVE-2022-41881", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41881 is fixed in version 4.1.82.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.82.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:74e705bc-afd2-5ac0-bed9-8e5e05a0d294", "id": "CVE-2022-41915", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-41915 affects version 4.1.82.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.82.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5377f2fe-7251-59a9-a698-f461ec7af74d", "id": "CVE-2023-34462", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-34462 affects version 4.1.82.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.82.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:275afff3-9d3d-55f7-91d2-5e35ff41bd04", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.82.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.82.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:79945146-764c-5964-a047-ce8b9bfecdcc", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-parent 4.1.82.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.82.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:46f15cb8-2d41-5977-b6f6-4e0ceb79477a", "id": "CVE-2024-29025", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-29025 affects version 4.1.82.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.82.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:06261c9d-e039-5b51-894c-ddc555107082", "id": "CVE-2024-47535", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-47535 affects version 4.1.82.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.82.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c2ffb6a5-6c45-5423-8b93-884f216f4e1d", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.82.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.82.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:55a5a1b3-3d10-5bc0-b4bd-2a6db7f09d37", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.82.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.82.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0692f5bd-e79f-539a-b737-a8ea554688d4", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.82.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.82.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:42e85df0-130e-5bfd-a3b1-283e929d27ad", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.82.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.82.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1a85a9f3-e788-545f-89d1-bed05e5d8277", "id": "CVE-2025-58057", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58057 affects version 4.1.82.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.82.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8cfdaffa-7b5b-51ad-8c31-d99143145e8b", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.82.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.82.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b95e59c2-c875-5ac9-8176-7b92e6fb9119", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.82.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.82.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0eb7f5da-c16e-59b3-95c6-8d162602248e", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.82.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.82.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c3199363-8524-5375-8fbd-d295ffd913ea", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.82.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.82.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:acfd0c05-7a39-5421-bfd5-16e79a9a4325", "id": "CVE-2026-41417", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41417 affects version 4.1.82.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.82.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:016d81fa-9795-5a8b-96ac-5621d367d98d", "id": "CVE-2026-42577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42577 affects version 4.1.82.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.82.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:346e64a5-0afb-5b83-989e-ad2aab912d95", "id": "CVE-2026-42578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42578 affects version 4.1.82.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.82.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:73d473a5-1e52-5fba-96f0-4bd499ee828a", "id": "CVE-2026-42579", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42579 affects version 4.1.82.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.82.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6709cfc9-76c4-528a-928c-fb33ecdcc9da", "id": "CVE-2026-42580", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42580 affects version 4.1.82.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.82.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:023a63a9-115b-555d-ae3f-534971b618be", "id": "CVE-2026-42581", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42581 affects version 4.1.82.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.82.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6f785842-0a02-523d-b541-4c3e0c8fb0ef", "id": "CVE-2026-42584", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42584 affects version 4.1.82.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.82.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:410a3db9-3aee-5959-89f0-775f1fa77f67", "id": "CVE-2026-42585", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42585 affects version 4.1.82.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.82.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:66cdd0fd-d90a-510b-977e-431346fb1723", "id": "CVE-2026-42586", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42586 affects version 4.1.82.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.82.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6d86ee65-4708-55a4-8def-197a06bae253", "id": "CVE-2026-42587", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42587 affects version 4.1.82.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.82.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4a36d082-5c7c-57b9-9f27-344f25eb0d6c", "id": "CVE-2026-44248", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44248 affects version 4.1.82.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.82.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:99afa6d6-8a3b-547a-97fc-5d21f3f97e71", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "resolved", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p is fixed in version 4.1.82.Final-tuxcare.1 of io.netty:netty-parent." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.82.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-parent@4.1.82.Final-tuxcare.1" } ] }