{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:ac810a9a-07ce-5d65-aad7-0ba75aa48512", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-all@4.1.112.Final-tuxcare.1", "type": "library", "group": "io.netty", "name": "netty-all", "version": "4.1.112.Final-tuxcare.1", "purl": "pkg:maven/io.netty/netty-all@4.1.112.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:99f7ab9c-501d-59e0-903a-876a0bb2e4ba", "id": "CVE-2024-47535", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-47535 affects version 4.1.112.Final-tuxcare.1 of io.netty:netty-all." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-all@4.1.112.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f68977cd-d877-57fe-8532-fde2e500601d", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.112.Final-tuxcare.1 of io.netty:netty-all." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-all@4.1.112.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:592ad86e-95f6-54d9-85d5-b8a939583faf", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.112.Final-tuxcare.1 of io.netty:netty-all." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-all@4.1.112.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6fb24c6b-b98b-5cd8-a0a2-b635d3b538dd", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.112.Final-tuxcare.1 of io.netty:netty-all." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-all@4.1.112.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bb165f70-4d7b-5985-8e5a-b8cc23252bb2", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.112.Final-tuxcare.1 of io.netty:netty-all." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-all@4.1.112.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:550e2807-ed12-5c71-8358-26b74eda6869", "id": "CVE-2025-58057", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58057 is fixed in version 4.1.112.Final-tuxcare.1 of io.netty:netty-all." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-all@4.1.112.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e0d321c5-9769-56d8-853e-78950fd22fb5", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.112.Final-tuxcare.1 of io.netty:netty-all." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-all@4.1.112.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6e06e3bb-b863-5dd5-8d21-170ca22c0941", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.112.Final-tuxcare.1 of io.netty:netty-all." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-all@4.1.112.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7478c395-17d2-5a51-b815-682ecb2930bd", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.112.Final-tuxcare.1 of io.netty:netty-all." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-all@4.1.112.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:265fa37b-294b-52b8-94d5-68d8d5637d92", "id": "CVE-2026-33871", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-33871 is fixed in version 4.1.112.Final-tuxcare.1 of io.netty:netty-all." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-all@4.1.112.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1d17d7a1-8cd5-5dcd-82dc-5953d8aaf2b9", "id": "CVE-2026-41417", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41417 affects version 4.1.112.Final-tuxcare.1 of io.netty:netty-all." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-all@4.1.112.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ab3a4b75-1c59-59ad-97a4-e487f6f31f8b", "id": "CVE-2026-42577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42577 affects version 4.1.112.Final-tuxcare.1 of io.netty:netty-all." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-all@4.1.112.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ccb58eec-61d2-5885-81d2-f0fed655b1d5", "id": "CVE-2026-42578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42578 affects version 4.1.112.Final-tuxcare.1 of io.netty:netty-all." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-all@4.1.112.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:55d841b0-7b5f-5b31-820c-01af5b2e90f5", "id": "CVE-2026-42579", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42579 affects version 4.1.112.Final-tuxcare.1 of io.netty:netty-all." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-all@4.1.112.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6387ec1d-87a4-5289-a15b-8b9cad5f40d1", "id": "CVE-2026-42580", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42580 affects version 4.1.112.Final-tuxcare.1 of io.netty:netty-all." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-all@4.1.112.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a8460088-51f6-5ab5-b5eb-d05be4ba3817", "id": "CVE-2026-42581", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42581 affects version 4.1.112.Final-tuxcare.1 of io.netty:netty-all." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-all@4.1.112.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:81376b19-b367-532a-83d6-73128520fb0b", "id": "CVE-2026-42584", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42584 affects version 4.1.112.Final-tuxcare.1 of io.netty:netty-all." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-all@4.1.112.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3e704aa6-ab50-52f9-b642-8c05973abc6d", "id": "CVE-2026-42585", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42585 affects version 4.1.112.Final-tuxcare.1 of io.netty:netty-all." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-all@4.1.112.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5a104af6-be8d-5ea0-9193-47d90fd49393", "id": "CVE-2026-42586", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42586 affects version 4.1.112.Final-tuxcare.1 of io.netty:netty-all." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-all@4.1.112.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:12b6f194-bf21-5f74-8660-2cd7653c7d97", "id": "CVE-2026-42587", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42587 affects version 4.1.112.Final-tuxcare.1 of io.netty:netty-all." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-all@4.1.112.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8fb2d7b0-4d97-5f79-837b-1063c7988670", "id": "CVE-2026-44248", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44248 affects version 4.1.112.Final-tuxcare.1 of io.netty:netty-all." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-all@4.1.112.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:aab3d987-a82a-57f7-a80b-21f5fe3a67e1", "id": "CVE-2026-44249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44249 affects version 4.1.112.Final-tuxcare.1 of io.netty:netty-all." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-all@4.1.112.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:82e9fe33-d561-5a56-ab13-83f54adac302", "id": "CVE-2026-44250", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44250 affects version 4.1.112.Final-tuxcare.1 of io.netty:netty-all." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-all@4.1.112.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9ebc8d51-6567-564a-a470-4b4eca74243b", "id": "CVE-2026-44890", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44890 affects version 4.1.112.Final-tuxcare.1 of io.netty:netty-all." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-all@4.1.112.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3a0b1ef6-2df0-59f7-a760-59083e2ae37b", "id": "CVE-2026-44893", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44893 affects version 4.1.112.Final-tuxcare.1 of io.netty:netty-all." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-all@4.1.112.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bbfe472b-e937-565b-9bad-b5891637bf6e", "id": "CVE-2026-45416", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-45416 affects version 4.1.112.Final-tuxcare.1 of io.netty:netty-all." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-all@4.1.112.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1ecc786a-3fd4-5922-b2c0-40ab5cb09b43", "id": "CVE-2026-45536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-45536 affects version 4.1.112.Final-tuxcare.1 of io.netty:netty-all." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-all@4.1.112.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:95f6de2a-2d1a-5c2c-9497-1721d89e026d", "id": "CVE-2026-45673", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-45673 affects version 4.1.112.Final-tuxcare.1 of io.netty:netty-all." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-all@4.1.112.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:435ccc1b-6b6d-529d-8912-e49d4fa1d8d1", "id": "CVE-2026-45674", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-45674 affects version 4.1.112.Final-tuxcare.1 of io.netty:netty-all." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-all@4.1.112.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:21dca8a7-daf1-533e-bd65-aba95dedb8a5", "id": "CVE-2026-46340", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-46340 affects version 4.1.112.Final-tuxcare.1 of io.netty:netty-all." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-all@4.1.112.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1994c403-285c-5f33-a653-66e809b6f430", "id": "CVE-2026-47244", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-47244 affects version 4.1.112.Final-tuxcare.1 of io.netty:netty-all." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-all@4.1.112.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:eac1fb69-6838-5c16-a378-9a243b7e2d0e", "id": "CVE-2026-47691", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-47691 affects version 4.1.112.Final-tuxcare.1 of io.netty:netty-all." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-all@4.1.112.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:911647c6-b6ff-572a-bb9c-12c7f10816e0", "id": "CVE-2026-48006", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-48006 affects version 4.1.112.Final-tuxcare.1 of io.netty:netty-all." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-all@4.1.112.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:14dea91e-9015-5ee3-9f62-949b22e5b5c3", "id": "CVE-2026-48043", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-48043 affects version 4.1.112.Final-tuxcare.1 of io.netty:netty-all." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-all@4.1.112.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0cc15cb3-7c0d-5096-b65b-12df0d511d05", "id": "CVE-2026-48059", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-48059 affects version 4.1.112.Final-tuxcare.1 of io.netty:netty-all." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-all@4.1.112.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-all@4.1.112.Final-tuxcare.1" } ] }