{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:b4b8c511-3534-5664-b8f0-5e638408272a", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.3", "type": "library", "group": "io.netty", "name": "netty-transport", "version": "4.1.63.Final-tuxcare.3", "purl": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:5ecc55f9-0576-5910-a22a-b4500591c06e", "id": "CVE-2021-37136", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37136 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4acd0cbe-a028-5fe6-b6b9-f58281d62cb3", "id": "CVE-2021-37137", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37137 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:66eaadc9-baef-5add-bd47-7bca45f70d49", "id": "CVE-2021-43797", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-43797 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c6628045-0ba5-5a4a-b9e1-5998c2afd91a", "id": "CVE-2022-24823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24823 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:42751a0b-bd6a-5dc5-b1aa-33af3eb10412", "id": "CVE-2022-41881", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41881 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:54e9dee0-73da-569a-a1a7-8ce8841875b6", "id": "CVE-2022-41915", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41915 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:80738524-8045-5e7e-901d-268a2b5d4c80", "id": "CVE-2023-34462", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34462 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d496414c-81e2-5f92-b9f5-24de59d9ddd7", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f6418c73-4465-5afa-bedf-81cd4c293cfc", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-transport 4.1.63.Final-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b2627c56-c967-590f-927a-5cf36c4d9b2f", "id": "CVE-2024-29025", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-29025 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6d5ae39c-49cd-5e08-aee6-05ba185f0ce2", "id": "CVE-2024-47535", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47535 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:69b1415c-e644-5065-83b3-4c6fea95df0e", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:35fe3c91-c7bd-5013-b98d-17f8fc7b730a", "id": "CVE-2025-25193", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-25193 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:16946a39-e5cd-5c15-967a-0182bb0c299a", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f36da293-3352-57c5-8523-80fcd336e4ce", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:17a58198-de34-5a8f-bcea-bf80cfe75cb6", "id": "CVE-2025-58057", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58057 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a904bb35-2cfd-583e-adc3-5b16029a7432", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:694872b8-ff10-5788-b1ea-05bfa9dd40e4", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:56b184ec-4435-500c-b4e8-15b994278023", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6daa5a24-24a4-507f-a286-8d88989d3f1f", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2b1b31d0-613d-50b2-90e9-8b1d7051cb1e", "id": "CVE-2026-41417", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41417 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5171fd4f-7bd8-58e1-b679-57df5a568134", "id": "CVE-2026-42577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42577 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c97e81c2-f31f-5bed-929e-fec54dde2a8d", "id": "CVE-2026-42578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42578 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:549d2680-068b-57fb-87f6-abd3d35d05fb", "id": "CVE-2026-42579", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42579 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:823dda1a-4d62-5a1b-90bf-ace7914595e0", "id": "CVE-2026-42580", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42580 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4f75ddb2-2168-50d2-889f-be8e742f9304", "id": "CVE-2026-42581", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42581 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9110f00d-3a4e-5eb5-8e2d-67ce22e4d5de", "id": "CVE-2026-42584", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42584 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:05bb88b6-918c-51ae-a303-214207dcd736", "id": "CVE-2026-42585", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42585 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4ee3d602-34ce-5793-8882-f28c0202858b", "id": "CVE-2026-42586", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42586 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1d4b6f9d-3737-52fe-8d8e-d12cc98ea865", "id": "CVE-2026-42587", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42587 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1a8414c0-2ad6-59ed-b9bf-f5122d1ba8ea", "id": "CVE-2026-44248", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44248 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8b3ed63a-88dc-504c-b71c-c8709e938d9b", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.63.Final-tuxcare.3" } ] }