{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:6c88065b-3873-5930-8e06-03f4dd01e8d0", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-transport@4.1.82.Final-tuxcare.2", "type": "library", "group": "io.netty", "name": "netty-transport", "version": "4.1.82.Final-tuxcare.2", "purl": "pkg:maven/io.netty/netty-transport@4.1.82.Final-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:e924d940-9721-5f8b-9068-b600f38bc64a", "id": "CVE-2022-41881", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41881 is fixed in version 4.1.82.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8b95cbf8-cf89-551d-be46-291a6bc3aa25", "id": "CVE-2022-41915", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-41915 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:db5021da-79de-5f92-a0e1-51dfe83193ae", "id": "CVE-2023-34462", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-34462 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1fa94099-4220-5fe0-975a-0c5611ce84cf", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.82.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9ad97e9b-907d-55f0-8dc2-bf0240e61a0e", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-transport 4.1.82.Final-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:35fa7897-7d6d-5f67-b1ec-342e07c92c5e", "id": "CVE-2024-29025", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-29025 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:00cc50e0-3551-5f1f-9382-ba6c87bfb3a5", "id": "CVE-2024-47535", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-47535 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1080b229-0765-542a-9683-b88116cef5ea", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.82.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4b458d51-58b7-5039-a56b-1d74533c9430", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fe1f9850-1db1-5122-8489-b08dfc57c041", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.82.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b2239047-e31a-5dec-91a3-417863c0d0ff", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7d8cf62c-40e3-5ed5-99ca-6b03f2f8a953", "id": "CVE-2025-58057", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58057 is fixed in version 4.1.82.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5167a983-8bfa-5c28-8796-77ab93b6d7e4", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.82.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:057112e3-7b5c-5b7a-ac0d-f4b042d7a82d", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8c9f49fa-be3c-587d-af07-c3483b44a96b", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4c536926-d3fa-5333-b8b5-63568c94c612", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1ed12064-7207-50b5-b420-c5d48feb0350", "id": "CVE-2026-41417", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41417 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f5f840af-f438-52c0-a9bf-9f931e5c7d3b", "id": "CVE-2026-42577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42577 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:71f5ea5c-6464-55d4-be11-0f481288aa56", "id": "CVE-2026-42578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42578 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6be99b86-d043-565e-afde-11572b201153", "id": "CVE-2026-42579", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42579 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9930d8bd-49f8-5672-9efc-4b34388ee034", "id": "CVE-2026-42580", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42580 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9de1623b-d3a4-584c-b4ca-ac986a102a97", "id": "CVE-2026-42581", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42581 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d2d5a9b6-0dda-5ee7-ba88-1ec84b9b8a30", "id": "CVE-2026-42584", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42584 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e0e4763b-b97b-5419-8f55-a9fc4a5fa4fe", "id": "CVE-2026-42585", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42585 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:295c6423-cdc7-5202-9cc9-9dd04a284c3a", "id": "CVE-2026-42586", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42586 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1354aa3c-1b07-5e94-8ce1-0582a1845aae", "id": "CVE-2026-42587", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42587 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b739453d-f28c-58b4-bcb4-27c4b06d7470", "id": "CVE-2026-44248", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44248 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:41924feb-d048-5304-98e3-fc3fa1fc64e6", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "resolved", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p is fixed in version 4.1.82.Final-tuxcare.2 of io.netty:netty-transport." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.82.Final-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-transport@4.1.82.Final-tuxcare.2" } ] }