{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:399f3e1b-cca8-58af-8718-84130bc9de71", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-codec-http@4.1.115.Final-tuxcare.6", "type": "library", "group": "io.netty", "name": "netty-codec-http", "version": "4.1.115.Final-tuxcare.6", "purl": "pkg:maven/io.netty/netty-codec-http@4.1.115.Final-tuxcare.6" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:25653020-0498-5d56-a194-7aa1990b4c35", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.115.Final-tuxcare.6 of io.netty:netty-codec-http." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-http@4.1.115.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:2b76ed48-6035-5ed5-8faa-74306b67b5a8", "id": "CVE-2025-25193", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-25193 is fixed in version 4.1.115.Final-tuxcare.6 of io.netty:netty-codec-http." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-http@4.1.115.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:1dc258c9-bb97-53fe-ae5b-8a1930c7249d", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.115.Final-tuxcare.6 of io.netty:netty-codec-http." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-http@4.1.115.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:eb960069-0554-5166-8cab-f127168ab2fa", "id": "CVE-2025-58056", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58056 is fixed in version 4.1.115.Final-tuxcare.6 of io.netty:netty-codec-http." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-http@4.1.115.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:9ddc9bae-20e0-5a4d-bd1d-5c4eb7fadd68", "id": "CVE-2025-58057", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58057 is fixed in version 4.1.115.Final-tuxcare.6 of io.netty:netty-codec-http." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-http@4.1.115.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:ead650e4-6d69-5609-8ed4-699f2f3d7e2d", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.115.Final-tuxcare.6 of io.netty:netty-codec-http." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-http@4.1.115.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:f1cb94df-5a79-54d8-8810-9cbeaa1211a5", "id": "CVE-2025-67735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-67735 is fixed in version 4.1.115.Final-tuxcare.6 of io.netty:netty-codec-http." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-http@4.1.115.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:85335319-5876-539e-b9a9-434993c8ace1", "id": "CVE-2026-33870", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-33870 is fixed in version 4.1.115.Final-tuxcare.6 of io.netty:netty-codec-http." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-http@4.1.115.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:42aa734a-01b9-5307-905c-98fb3bf9fab9", "id": "CVE-2026-33871", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-33871 is fixed in version 4.1.115.Final-tuxcare.6 of io.netty:netty-codec-http." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-http@4.1.115.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:3e1637d5-007f-5662-a959-bebb1ab6d6e5", "id": "CVE-2026-41417", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41417 affects version 4.1.115.Final-tuxcare.6 of io.netty:netty-codec-http." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-http@4.1.115.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:77fee196-f875-5e78-9296-67d09afbfbae", "id": "CVE-2026-42577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42577 affects version 4.1.115.Final-tuxcare.6 of io.netty:netty-codec-http." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-http@4.1.115.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:c5fcd8d3-4e18-5b40-8252-bb186b640846", "id": "CVE-2026-42578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42578 affects version 4.1.115.Final-tuxcare.6 of io.netty:netty-codec-http." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-http@4.1.115.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:903adb7c-eeaa-5d1b-a6da-631a0c4f310c", "id": "CVE-2026-42579", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-42579 is fixed in version 4.1.115.Final-tuxcare.6 of io.netty:netty-codec-http." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-http@4.1.115.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:bed1f911-6b12-58d3-85db-3c2da923f037", "id": "CVE-2026-42580", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42580 affects version 4.1.115.Final-tuxcare.6 of io.netty:netty-codec-http." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-http@4.1.115.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:c2b25d3e-2fc2-549c-84d3-f2edcaffa426", "id": "CVE-2026-42581", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42581 affects version 4.1.115.Final-tuxcare.6 of io.netty:netty-codec-http." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-http@4.1.115.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:74613ea0-d7f5-5970-835e-837ef9fb9678", "id": "CVE-2026-42584", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42584 affects version 4.1.115.Final-tuxcare.6 of io.netty:netty-codec-http." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-http@4.1.115.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:1c0b9b92-abf5-507c-aba4-b8fdb34a733e", "id": "CVE-2026-42585", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42585 affects version 4.1.115.Final-tuxcare.6 of io.netty:netty-codec-http." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-http@4.1.115.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:a607d22f-b89d-5af4-a712-f5c456924ae0", "id": "CVE-2026-42586", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42586 affects version 4.1.115.Final-tuxcare.6 of io.netty:netty-codec-http." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-http@4.1.115.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:b0a823b1-4e29-5fc9-a776-41e4067d5d81", "id": "CVE-2026-42587", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42587 affects version 4.1.115.Final-tuxcare.6 of io.netty:netty-codec-http." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-http@4.1.115.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:888e068d-6ae0-5b42-9df7-0c72bdbddcfb", "id": "CVE-2026-44248", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44248 affects version 4.1.115.Final-tuxcare.6 of io.netty:netty-codec-http." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-http@4.1.115.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:adeb2707-2d16-5368-a4c1-3ee43a5a8e26", "id": "CVE-2026-44249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44249 affects version 4.1.115.Final-tuxcare.6 of io.netty:netty-codec-http." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-http@4.1.115.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:c128f39d-2637-5844-962d-1434dbe79063", "id": "CVE-2026-44250", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44250 affects version 4.1.115.Final-tuxcare.6 of io.netty:netty-codec-http." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-http@4.1.115.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:9b3231ea-5f0e-52ef-99f6-e341c4e91fcb", "id": "CVE-2026-44890", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44890 affects version 4.1.115.Final-tuxcare.6 of io.netty:netty-codec-http." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-http@4.1.115.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:dcf25fe6-1912-5dbb-a653-88d47302459c", "id": "CVE-2026-44893", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44893 affects version 4.1.115.Final-tuxcare.6 of io.netty:netty-codec-http." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-http@4.1.115.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:c42fbac3-3e3b-5616-9bec-f462c847d76f", "id": "CVE-2026-45416", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-45416 affects version 4.1.115.Final-tuxcare.6 of io.netty:netty-codec-http." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-http@4.1.115.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:a614f32e-c6d6-537c-8ad4-a98fe5109cd0", "id": "CVE-2026-45536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-45536 affects version 4.1.115.Final-tuxcare.6 of io.netty:netty-codec-http." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-http@4.1.115.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:15a7cfad-c65b-5901-b1de-c82ad0639604", "id": "CVE-2026-45673", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-45673 affects version 4.1.115.Final-tuxcare.6 of io.netty:netty-codec-http." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-http@4.1.115.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:05c9457b-4da3-544a-a324-4dd0b1d9145e", "id": "CVE-2026-45674", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-45674 affects version 4.1.115.Final-tuxcare.6 of io.netty:netty-codec-http." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-http@4.1.115.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:bb9a250c-8e72-52fe-ab55-b2d065016dfa", "id": "CVE-2026-46340", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-46340 affects version 4.1.115.Final-tuxcare.6 of io.netty:netty-codec-http." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-http@4.1.115.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:8d748646-5a07-50b2-a4c0-da650b0fe72c", "id": "CVE-2026-47244", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-47244 affects version 4.1.115.Final-tuxcare.6 of io.netty:netty-codec-http." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-http@4.1.115.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:0439a8e0-a640-5528-a93e-036ec7ed649b", "id": "CVE-2026-47691", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-47691 affects version 4.1.115.Final-tuxcare.6 of io.netty:netty-codec-http." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-http@4.1.115.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:544af404-368c-5b94-9ad8-587dfe77f7d9", "id": "CVE-2026-48006", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-48006 affects version 4.1.115.Final-tuxcare.6 of io.netty:netty-codec-http." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-http@4.1.115.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:66240025-1a76-55d3-a249-f70ec74e0d06", "id": "CVE-2026-48043", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-48043 affects version 4.1.115.Final-tuxcare.6 of io.netty:netty-codec-http." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-http@4.1.115.Final-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:36aaf9b0-05f5-54c2-b317-1424d38ec166", "id": "CVE-2026-48059", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-48059 affects version 4.1.115.Final-tuxcare.6 of io.netty:netty-codec-http." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-http@4.1.115.Final-tuxcare.6" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-codec-http@4.1.115.Final-tuxcare.6" } ] }