{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:a33a2abc-92c6-5a7a-a124-d42def1a4448", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-codec-mqtt@4.1.112.Final-tuxcare.4", "type": "library", "group": "io.netty", "name": "netty-codec-mqtt", "version": "4.1.112.Final-tuxcare.4", "purl": "pkg:maven/io.netty/netty-codec-mqtt@4.1.112.Final-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:45fa45f4-71cb-5b53-9420-0fb73d514732", "id": "CVE-2024-47535", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-47535 affects version 4.1.112.Final-tuxcare.4 of io.netty:netty-codec-mqtt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-mqtt@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3c64ec4c-b21d-5cf9-8ba3-7079742e6ee3", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.112.Final-tuxcare.4 of io.netty:netty-codec-mqtt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-mqtt@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2fcd6603-5aa1-58d2-bebf-f415840705df", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.112.Final-tuxcare.4 of io.netty:netty-codec-mqtt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-mqtt@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8ccc2733-8935-5fac-8ec7-d386bb1108e5", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.112.Final-tuxcare.4 of io.netty:netty-codec-mqtt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-mqtt@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:6ab033e9-25b0-53cf-a6db-f3d3b861d098", "id": "CVE-2025-58056", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58056 is fixed in version 4.1.112.Final-tuxcare.4 of io.netty:netty-codec-mqtt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-mqtt@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e4eb5bdc-91f4-5181-b42c-c8d8e8472fe7", "id": "CVE-2025-58057", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58057 is fixed in version 4.1.112.Final-tuxcare.4 of io.netty:netty-codec-mqtt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-mqtt@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8a2b8335-fbbb-5e8b-868b-27754475869a", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.112.Final-tuxcare.4 of io.netty:netty-codec-mqtt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-mqtt@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:fc4b49c1-6713-5701-80f5-0c96a7f35c24", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.112.Final-tuxcare.4 of io.netty:netty-codec-mqtt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-mqtt@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a1e8da45-349a-5e8c-b69d-f25c8f06ed21", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.112.Final-tuxcare.4 of io.netty:netty-codec-mqtt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-mqtt@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:897aa7e9-4030-56b0-b40a-fad91c04a99c", "id": "CVE-2026-33871", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-33871 is fixed in version 4.1.112.Final-tuxcare.4 of io.netty:netty-codec-mqtt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-mqtt@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f087dd23-f7bb-5fab-a697-f76ee3d107cb", "id": "CVE-2026-41417", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41417 affects version 4.1.112.Final-tuxcare.4 of io.netty:netty-codec-mqtt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-mqtt@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4ff1ab24-2e1a-5a7b-a9ee-efdc19ca6dea", "id": "CVE-2026-42577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42577 affects version 4.1.112.Final-tuxcare.4 of io.netty:netty-codec-mqtt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-mqtt@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:bdaae8b0-a376-5605-8051-71ea99946d98", "id": "CVE-2026-42578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42578 affects version 4.1.112.Final-tuxcare.4 of io.netty:netty-codec-mqtt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-mqtt@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a49823e2-327d-54d7-89bd-9e267bae5a57", "id": "CVE-2026-42579", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-42579 is fixed in version 4.1.112.Final-tuxcare.4 of io.netty:netty-codec-mqtt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-mqtt@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e1ab440d-89fb-52ee-8527-2d7e228a0e6b", "id": "CVE-2026-42580", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42580 affects version 4.1.112.Final-tuxcare.4 of io.netty:netty-codec-mqtt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-mqtt@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:edf0adba-5e86-5fc1-8281-9e1780ab6365", "id": "CVE-2026-42581", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42581 affects version 4.1.112.Final-tuxcare.4 of io.netty:netty-codec-mqtt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-mqtt@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:eb63d8c1-5811-5a3f-ae1f-33afbebab250", "id": "CVE-2026-42584", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42584 affects version 4.1.112.Final-tuxcare.4 of io.netty:netty-codec-mqtt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-mqtt@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:9e099d68-22a6-5630-9237-2ef24c99cb14", "id": "CVE-2026-42585", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42585 affects version 4.1.112.Final-tuxcare.4 of io.netty:netty-codec-mqtt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-mqtt@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b55f912c-778e-59a9-b13c-f28647357484", "id": "CVE-2026-42586", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42586 affects version 4.1.112.Final-tuxcare.4 of io.netty:netty-codec-mqtt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-mqtt@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:39c75c23-27b9-5c20-93b7-b164ccc1b3a1", "id": "CVE-2026-42587", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42587 affects version 4.1.112.Final-tuxcare.4 of io.netty:netty-codec-mqtt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-mqtt@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:609b8b43-ca5c-5c21-9678-260c1d7fdb43", "id": "CVE-2026-44248", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44248 affects version 4.1.112.Final-tuxcare.4 of io.netty:netty-codec-mqtt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-mqtt@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b8c6dfd8-ac4d-5c31-b91b-10bda0797290", "id": "CVE-2026-44249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44249 affects version 4.1.112.Final-tuxcare.4 of io.netty:netty-codec-mqtt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-mqtt@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:5635bef4-7283-522b-aa9a-8c8d9ef502ad", "id": "CVE-2026-44250", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44250 affects version 4.1.112.Final-tuxcare.4 of io.netty:netty-codec-mqtt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-mqtt@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c78ae45e-07f8-572c-a520-e2e19a95e46e", "id": "CVE-2026-44890", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44890 affects version 4.1.112.Final-tuxcare.4 of io.netty:netty-codec-mqtt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-mqtt@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2963d56f-51c9-505b-84a3-e03426bdebd7", "id": "CVE-2026-44893", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44893 affects version 4.1.112.Final-tuxcare.4 of io.netty:netty-codec-mqtt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-mqtt@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:783d7365-2d6e-5017-ad28-9d14928106f9", "id": "CVE-2026-45416", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-45416 affects version 4.1.112.Final-tuxcare.4 of io.netty:netty-codec-mqtt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-mqtt@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:69ebdb8a-171d-5eab-ad22-70568f0fcc8e", "id": "CVE-2026-45536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-45536 affects version 4.1.112.Final-tuxcare.4 of io.netty:netty-codec-mqtt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-mqtt@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:55e0db78-bb29-5de6-9eb4-c4404f43e399", "id": "CVE-2026-45673", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-45673 affects version 4.1.112.Final-tuxcare.4 of io.netty:netty-codec-mqtt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-mqtt@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f1c2a356-c2f5-5329-98b1-8e71c6979af1", "id": "CVE-2026-45674", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-45674 affects version 4.1.112.Final-tuxcare.4 of io.netty:netty-codec-mqtt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-mqtt@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:cc4aa603-a58d-5923-addf-4b172f379857", "id": "CVE-2026-46340", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-46340 affects version 4.1.112.Final-tuxcare.4 of io.netty:netty-codec-mqtt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-mqtt@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:5f12dcf9-dd79-512b-8e5f-6b10e3c65e67", "id": "CVE-2026-47244", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-47244 affects version 4.1.112.Final-tuxcare.4 of io.netty:netty-codec-mqtt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-mqtt@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2918991b-2ed6-5e11-b98a-5fae23aa9926", "id": "CVE-2026-47691", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-47691 affects version 4.1.112.Final-tuxcare.4 of io.netty:netty-codec-mqtt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-mqtt@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:49a84f5d-1378-5d0c-a173-e43de744b754", "id": "CVE-2026-48006", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-48006 affects version 4.1.112.Final-tuxcare.4 of io.netty:netty-codec-mqtt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-mqtt@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8406ef1b-234b-5603-99fc-cee2d55c9731", "id": "CVE-2026-48043", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-48043 affects version 4.1.112.Final-tuxcare.4 of io.netty:netty-codec-mqtt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-mqtt@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c678a193-dbf4-5bb3-9995-fee7cdc1cc8c", "id": "CVE-2026-48059", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-48059 affects version 4.1.112.Final-tuxcare.4 of io.netty:netty-codec-mqtt." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-mqtt@4.1.112.Final-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-codec-mqtt@4.1.112.Final-tuxcare.4" } ] }