{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:45798075-610f-5c75-a464-aa259f7bc44a", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.75.Final-tuxcare.1", "type": "library", "group": "io.netty", "name": "netty-codec-stomp", "version": "4.1.75.Final-tuxcare.1", "purl": "pkg:maven/io.netty/netty-codec-stomp@4.1.75.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:a4640965-6ab6-5681-8a06-ca10a9595cea", "id": "CVE-2022-24823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24823 is fixed in version 4.1.75.Final-tuxcare.1 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e6fba969-590a-5abc-9b0e-05d78670eab5", "id": "CVE-2022-41881", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41881 is fixed in version 4.1.75.Final-tuxcare.1 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:33783e7c-90e2-5f27-a353-346b31443d1a", "id": "CVE-2022-41915", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-41915 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6d2fc0cc-1aff-5cc9-aa17-b90900485660", "id": "CVE-2023-34462", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34462 is fixed in version 4.1.75.Final-tuxcare.1 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:33bf8251-b228-52ad-927f-66d63488554d", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.75.Final-tuxcare.1 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cec02864-fa7f-5394-8777-da8a30154d22", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-codec-stomp 4.1.75.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6a38f33b-a772-523b-b079-714de9a13452", "id": "CVE-2024-29025", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-29025 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:780ad361-04ec-5e7e-98c7-8f0f75bf9ab5", "id": "CVE-2024-47535", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47535 is fixed in version 4.1.75.Final-tuxcare.1 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f4339686-a3ec-5e8e-9c85-ac4fcad2ee01", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.75.Final-tuxcare.1 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0ae37850-c621-56eb-b4ed-63034e782f92", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3640c3ac-c416-5be5-b51b-aad52def3ad3", "id": "CVE-2025-55163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55163 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:286cc9a1-7ea9-57a3-96b6-91841b5d91f4", "id": "CVE-2025-58056", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58056 is fixed in version 4.1.75.Final-tuxcare.1 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:90504a4b-669b-5fd0-8429-55d33efae5d0", "id": "CVE-2025-58057", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58057 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e37c9ccd-3eea-5ecd-9656-413d277e9385", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.75.Final-tuxcare.1 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ce9683b1-6481-51c0-89cf-540c800b7a42", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:07317c3d-41a9-5ae8-a5d9-ea2ec035e9d5", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1a4b9992-39e6-54cc-a072-1c65285c1ed6", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7003f767-c5dc-5212-9336-97341ce28226", "id": "CVE-2026-41417", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41417 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:68513e3d-3e84-588d-b442-ccbfc2c34f5b", "id": "CVE-2026-42577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42577 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a6b26a39-c095-5c17-9f38-9d58ccb9a1a2", "id": "CVE-2026-42578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42578 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:485cf40a-4179-5367-8ec1-02104020669a", "id": "CVE-2026-42579", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42579 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:25e2ee65-95ce-5236-828a-0428d4313992", "id": "CVE-2026-42580", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42580 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:02a22e1c-bd52-58bd-8ff3-92ff1fbf1542", "id": "CVE-2026-42581", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42581 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6e65321d-c289-556f-82b0-eb1a3d949271", "id": "CVE-2026-42584", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42584 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:39ff636d-d46a-58b2-a87a-a5fba49117c9", "id": "CVE-2026-42585", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42585 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:da8c791d-93b3-51bb-828e-d6d5c267dc1c", "id": "CVE-2026-42586", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42586 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e3553cd2-2206-5593-a7f2-4dda150b3088", "id": "CVE-2026-42587", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42587 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f494bbdb-ffd4-57b6-855c-945b94304509", "id": "CVE-2026-44248", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44248 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dbb3b4c0-4258-513e-ba79-b228f6f5302e", "id": "CVE-2026-44249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44249 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b77010de-9207-5e63-9f4d-3e1c7ac9d095", "id": "CVE-2026-44250", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44250 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:468dc5bc-24e1-5dd5-a693-942ce6cc33a1", "id": "CVE-2026-44890", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44890 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ce47bfb7-0118-5c76-9e45-5d20e93092f2", "id": "CVE-2026-44893", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44893 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cb5d6cc1-8dd3-57a4-8e55-ba177bb9c000", "id": "CVE-2026-45416", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-45416 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3bf4a8b1-6439-5862-949f-4596bee692ad", "id": "CVE-2026-45536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-45536 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bda1959e-7ba1-540b-9302-7de9e5154311", "id": "CVE-2026-45673", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-45673 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9bb61e1c-b758-52d1-a798-8798d0a0e7bc", "id": "CVE-2026-45674", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-45674 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7bfb10f8-c730-5feb-bdae-f1928d1c5d5b", "id": "CVE-2026-46340", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-46340 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c6e90ebe-3c32-5ca0-b6c6-dff6d09f2174", "id": "CVE-2026-47244", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-47244 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ab4b1b41-ae42-5dbd-864e-0b46ac150062", "id": "CVE-2026-47691", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-47691 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f1d3c1e1-39e9-59d9-98b0-1deccef0f8f6", "id": "CVE-2026-48006", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-48006 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3087af73-1f13-5e4e-8a91-fe87a14a6297", "id": "CVE-2026-48043", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-48043 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1a6e69ea-d97d-58a2-9666-abc3309d1bf4", "id": "CVE-2026-48059", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-48059 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:932f8f93-090e-5858-86c3-cb4ddbdc23a9", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "resolved", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p is fixed in version 4.1.75.Final-tuxcare.1 of io.netty:netty-codec-stomp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.75.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-codec-stomp@4.1.75.Final-tuxcare.1" } ] }