{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:57796d83-c716-5b6e-a620-ff02f386e568", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-buffer@4.1.82.Final-tuxcare.2", "type": "library", "group": "io.netty", "name": "netty-buffer", "version": "4.1.82.Final-tuxcare.2", "purl": "pkg:maven/io.netty/netty-buffer@4.1.82.Final-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:85709139-b2d7-55a6-a971-1579d54c5029", "id": "CVE-2022-41881", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41881 is fixed in version 4.1.82.Final-tuxcare.2 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:93baa817-f3d1-5aca-9f0d-89e2cf5df324", "id": "CVE-2022-41915", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-41915 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5037caac-c6cb-5ea9-a401-dc009a9ace9b", "id": "CVE-2023-34462", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-34462 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4c46e1d6-98db-5577-a843-006b26136953", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.82.Final-tuxcare.2 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4b534acf-803b-5d9b-9dc9-9017ff7fbeaa", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-buffer 4.1.82.Final-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fafa0e5e-09d5-5f03-a75c-e739879dbfcf", "id": "CVE-2024-29025", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-29025 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:98945f03-6e19-5d50-8b53-d1b3a81083b3", "id": "CVE-2024-47535", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-47535 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f4220fd5-376c-5576-bd88-9bd16fa6653b", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.82.Final-tuxcare.2 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:63f95f2b-b39b-5f81-8115-19c74bc485fc", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e2db29e0-6b10-5454-ad63-f9855e59ced4", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.82.Final-tuxcare.2 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1dcd0917-22d2-5754-878b-ea102ccf63c1", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9565f197-becf-5c2b-9dc7-129ee6656ee6", "id": "CVE-2025-58057", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58057 is fixed in version 4.1.82.Final-tuxcare.2 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:79737f1c-8636-5d7e-9662-6cd5c62645eb", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.82.Final-tuxcare.2 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:81246f7d-a590-5e48-b827-c93391d2b30e", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5acaf142-92a6-5c5b-b87c-6b64f2d82e04", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:735b82c8-a2aa-52ce-b900-50918a895cd1", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:999185d5-4cc3-50e5-a191-0a0a1d31f03d", "id": "CVE-2026-41417", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41417 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fea693af-6d37-5766-93d6-7900d6b30000", "id": "CVE-2026-42577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42577 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3d21768c-deaf-5c32-996d-33869533f2c7", "id": "CVE-2026-42578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42578 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:de4bd6c2-b265-5f56-9302-5cdb021d173d", "id": "CVE-2026-42579", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42579 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f57634c3-71e9-5cc2-946c-435c7885d44c", "id": "CVE-2026-42580", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42580 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b876bc9f-e920-5c15-bf76-34c70bc2f9cd", "id": "CVE-2026-42581", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42581 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:86f78702-f324-5772-b4ab-3c6b9d5af40c", "id": "CVE-2026-42584", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42584 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:52b8be40-dbf9-5f07-b875-4e048d19b85f", "id": "CVE-2026-42585", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42585 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ab1d11f2-53a5-542e-be05-bf26285e4f00", "id": "CVE-2026-42586", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42586 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f1df9bdb-4fcf-5af3-b7f5-fec8a0e0e9c5", "id": "CVE-2026-42587", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42587 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5ded4109-54ed-5ac2-96e9-31f466c12b59", "id": "CVE-2026-44248", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44248 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9c6f9880-2a71-5a0c-80eb-4408ee1a3de9", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "resolved", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p is fixed in version 4.1.82.Final-tuxcare.2 of io.netty:netty-buffer." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.82.Final-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-buffer@4.1.82.Final-tuxcare.2" } ] }