{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:ad9288fe-f9fe-50fa-a35d-671f5153bc37", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-codec-socks@4.1.58.Final-tuxcare.1", "type": "library", "group": "io.netty", "name": "netty-codec-socks", "version": "4.1.58.Final-tuxcare.1", "purl": "pkg:maven/io.netty/netty-codec-socks@4.1.58.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:d4f5c679-832b-5eff-8b07-ce0ef719784a", "id": "CVE-2021-21290", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-21290 is fixed in version 4.1.58.Final-tuxcare.1 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:63090c5b-a127-5e06-b380-988d1dac991d", "id": "CVE-2021-21295", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-21295 is fixed in version 4.1.58.Final-tuxcare.1 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:df2f5e03-9db5-5b2c-930a-a1e10c0c754c", "id": "CVE-2021-21409", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-21409 affects version 4.1.58.Final-tuxcare.1 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5ecff420-0507-5b7c-8f45-6508c1bbd969", "id": "CVE-2021-37136", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37136 is fixed in version 4.1.58.Final-tuxcare.1 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a3cefdab-bca6-5d52-ba37-37916c926623", "id": "CVE-2021-43797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-43797 affects version 4.1.58.Final-tuxcare.1 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fe151f9b-4af5-5c2d-aca5-c67a46e515b8", "id": "CVE-2022-24823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24823 is fixed in version 4.1.58.Final-tuxcare.1 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:63987fd0-c15e-52a8-9772-bc888adb09c4", "id": "CVE-2022-41881", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41881 is fixed in version 4.1.58.Final-tuxcare.1 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fce4ed21-1f9e-5927-9378-aecc97aca542", "id": "CVE-2023-34462", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34462 is fixed in version 4.1.58.Final-tuxcare.1 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ae15f953-3f75-59fe-b820-a4725f8d1548", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 4.1.58.Final-tuxcare.1 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a3fd88cf-391a-579d-85a5-9d8692eae433", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-codec-socks 4.1.58.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2890ddd8-a3ac-5dbd-b0b8-fb3270683d96", "id": "CVE-2024-29025", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-29025 affects version 4.1.58.Final-tuxcare.1 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:67bc3ea2-3b1e-5e35-89f7-509865372835", "id": "CVE-2024-47535", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-47535 affects version 4.1.58.Final-tuxcare.1 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c679da5f-a49a-5209-853f-9aad310a9f7e", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.58.Final-tuxcare.1 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ac26106d-09f4-5657-ac0e-9d0c68169119", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.58.Final-tuxcare.1 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7a0f052a-93b6-5731-a1d5-57cfc2eaaacd", "id": "CVE-2025-55163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55163 affects version 4.1.58.Final-tuxcare.1 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:eeb0e169-73bc-5560-99fd-844805f33cc4", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.58.Final-tuxcare.1 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e3a30625-ad12-50e9-a009-da68d1de8fee", "id": "CVE-2025-58057", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58057 affects version 4.1.58.Final-tuxcare.1 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:59a87c95-30d8-5ec2-bf7d-92aaa473e920", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.58.Final-tuxcare.1 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:55a94073-f6a2-5d51-a28f-87ddf593de65", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.58.Final-tuxcare.1 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0565bf2f-d3f6-5357-9b24-ee49b6eee6ce", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.58.Final-tuxcare.1 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:60c36597-e846-5b72-9086-d77735202815", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.58.Final-tuxcare.1 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ac81663a-63a7-5ecd-a248-3323c08562d0", "id": "CVE-2026-41417", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41417 affects version 4.1.58.Final-tuxcare.1 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d978f32e-9df3-57b3-a513-fcf48731349e", "id": "CVE-2026-42577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42577 affects version 4.1.58.Final-tuxcare.1 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d78a0495-634f-5636-845e-32ad91887021", "id": "CVE-2026-42578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42578 affects version 4.1.58.Final-tuxcare.1 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:82f84c2e-cb54-530b-a622-7dc3c445f5be", "id": "CVE-2026-42579", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42579 affects version 4.1.58.Final-tuxcare.1 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bb422e3b-912d-5545-adac-28818077dad0", "id": "CVE-2026-42580", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42580 affects version 4.1.58.Final-tuxcare.1 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:50361b15-076c-5d1b-8135-2c6fd2ad3702", "id": "CVE-2026-42581", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42581 affects version 4.1.58.Final-tuxcare.1 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:df2fb721-3096-59a1-b132-cec3264f71c9", "id": "CVE-2026-42584", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42584 affects version 4.1.58.Final-tuxcare.1 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3af4dfc6-9ff7-50f4-b385-909080059b3d", "id": "CVE-2026-42585", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42585 affects version 4.1.58.Final-tuxcare.1 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:84f2e250-2ead-56a6-8233-1554a1ca34c2", "id": "CVE-2026-42586", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42586 affects version 4.1.58.Final-tuxcare.1 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:059f499f-e80b-5174-866a-8f87d0c12c78", "id": "CVE-2026-42587", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42587 affects version 4.1.58.Final-tuxcare.1 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:33592c99-f587-5f3b-a1b3-dac7f36e197f", "id": "CVE-2026-44248", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44248 affects version 4.1.58.Final-tuxcare.1 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.58.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4e3cc3a8-cb2d-5b37-8c50-9fba328d5a2b", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.58.Final-tuxcare.1 of io.netty:netty-codec-socks." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.58.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-codec-socks@4.1.58.Final-tuxcare.1" } ] }