{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:44ae7dfc-0e02-5a58-bcfd-0d90e65cbbee", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-codec-xml@4.1.115.Final-tuxcare.3", "type": "library", "group": "io.netty", "name": "netty-codec-xml", "version": "4.1.115.Final-tuxcare.3", "purl": "pkg:maven/io.netty/netty-codec-xml@4.1.115.Final-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:968d02e1-e47b-5844-b8a2-82bc8ad746d9", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.115.Final-tuxcare.3 of io.netty:netty-codec-xml." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-xml@4.1.115.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ad791c96-e4ae-559b-be2b-2a881ea5ceb1", "id": "CVE-2025-25193", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-25193 is fixed in version 4.1.115.Final-tuxcare.3 of io.netty:netty-codec-xml." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-xml@4.1.115.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a8563b1c-c552-56d9-8622-d1fa8652ccd1", "id": "CVE-2025-55163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55163 affects version 4.1.115.Final-tuxcare.3 of io.netty:netty-codec-xml." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-xml@4.1.115.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a55a434c-3ea0-5583-8724-d057ebb3bb3b", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.115.Final-tuxcare.3 of io.netty:netty-codec-xml." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-xml@4.1.115.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:99933c94-d6d0-5119-a27e-142d95d8b385", "id": "CVE-2025-58057", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58057 affects version 4.1.115.Final-tuxcare.3 of io.netty:netty-codec-xml." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-xml@4.1.115.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:68726c52-8b0b-5a0b-a076-c31f3dd1a604", "id": "CVE-2025-59419", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59419 affects version 4.1.115.Final-tuxcare.3 of io.netty:netty-codec-xml." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-xml@4.1.115.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b375f087-a174-50ff-b92e-937670151c17", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.115.Final-tuxcare.3 of io.netty:netty-codec-xml." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-xml@4.1.115.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:089ef1ec-f506-512b-ae6d-6bc7e54c5d9e", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.115.Final-tuxcare.3 of io.netty:netty-codec-xml." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-xml@4.1.115.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d5709135-5125-52e4-9bf7-defae2f1d078", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.115.Final-tuxcare.3 of io.netty:netty-codec-xml." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-xml@4.1.115.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:095d6871-6063-52a5-b089-c865c361f5d3", "id": "CVE-2026-41417", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41417 affects version 4.1.115.Final-tuxcare.3 of io.netty:netty-codec-xml." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-xml@4.1.115.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:23737d9b-9aad-5729-af9b-b9cc6a418eb1", "id": "CVE-2026-42577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42577 affects version 4.1.115.Final-tuxcare.3 of io.netty:netty-codec-xml." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-xml@4.1.115.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5c3b6ba0-a7e3-5341-b3c7-e810c26c243a", "id": "CVE-2026-42578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42578 affects version 4.1.115.Final-tuxcare.3 of io.netty:netty-codec-xml." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-xml@4.1.115.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ef177bb3-14f4-5c65-b29c-896302e18bc7", "id": "CVE-2026-42579", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42579 affects version 4.1.115.Final-tuxcare.3 of io.netty:netty-codec-xml." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-xml@4.1.115.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f91a3368-2a2a-5ad7-840c-ed7f740551f7", "id": "CVE-2026-42580", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42580 affects version 4.1.115.Final-tuxcare.3 of io.netty:netty-codec-xml." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-xml@4.1.115.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:aefa7a83-bde5-5037-af91-bbee33935ae4", "id": "CVE-2026-42581", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42581 affects version 4.1.115.Final-tuxcare.3 of io.netty:netty-codec-xml." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-xml@4.1.115.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6cddbfbb-e561-58f6-b7a9-bd0be72922b3", "id": "CVE-2026-42584", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42584 affects version 4.1.115.Final-tuxcare.3 of io.netty:netty-codec-xml." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-xml@4.1.115.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a3fddd5d-2c5b-53d0-adfa-d59180ec3d5e", "id": "CVE-2026-42585", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42585 affects version 4.1.115.Final-tuxcare.3 of io.netty:netty-codec-xml." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-xml@4.1.115.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:324ee5f8-53f1-58d0-bc6a-cdf00c2ceb43", "id": "CVE-2026-42586", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42586 affects version 4.1.115.Final-tuxcare.3 of io.netty:netty-codec-xml." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-xml@4.1.115.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b88a361f-6d0b-5be7-ac85-8ca22bb1c8f5", "id": "CVE-2026-42587", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42587 affects version 4.1.115.Final-tuxcare.3 of io.netty:netty-codec-xml." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-xml@4.1.115.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3c12e6d8-e47c-5cf4-ae9d-e400ebc85986", "id": "CVE-2026-44248", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44248 affects version 4.1.115.Final-tuxcare.3 of io.netty:netty-codec-xml." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-xml@4.1.115.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4d27df58-6ab6-5130-a870-31df7a66bec5", "id": "CVE-2026-44249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44249 affects version 4.1.115.Final-tuxcare.3 of io.netty:netty-codec-xml." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-xml@4.1.115.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1ba00900-5e1e-5d05-ad1e-3f384c04dfbe", "id": "CVE-2026-44250", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44250 affects version 4.1.115.Final-tuxcare.3 of io.netty:netty-codec-xml." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-xml@4.1.115.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6a0871e5-075f-50e4-9cdb-e9609167fb8d", "id": "CVE-2026-44890", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44890 affects version 4.1.115.Final-tuxcare.3 of io.netty:netty-codec-xml." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-xml@4.1.115.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:501c9ba1-af07-54cc-b646-2628db5dc20f", "id": "CVE-2026-44893", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44893 affects version 4.1.115.Final-tuxcare.3 of io.netty:netty-codec-xml." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-xml@4.1.115.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6100e09a-3a87-539f-945d-d801c49927b7", "id": "CVE-2026-45416", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-45416 affects version 4.1.115.Final-tuxcare.3 of io.netty:netty-codec-xml." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-xml@4.1.115.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4ec3f49b-0032-5010-8043-417a7e2d6b37", "id": "CVE-2026-45536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-45536 affects version 4.1.115.Final-tuxcare.3 of io.netty:netty-codec-xml." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-xml@4.1.115.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:66ae6434-998d-5e0a-be5c-406925f3c012", "id": "CVE-2026-45673", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-45673 affects version 4.1.115.Final-tuxcare.3 of io.netty:netty-codec-xml." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-xml@4.1.115.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d41e51ae-2e87-519b-aaeb-a24389292297", "id": "CVE-2026-45674", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-45674 affects version 4.1.115.Final-tuxcare.3 of io.netty:netty-codec-xml." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-xml@4.1.115.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fedb789e-46ca-55d8-b2dc-998d3c0148ca", "id": "CVE-2026-46340", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-46340 affects version 4.1.115.Final-tuxcare.3 of io.netty:netty-codec-xml." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-xml@4.1.115.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b52e2cfd-a51e-5794-ad06-28347a24ad04", "id": "CVE-2026-47244", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-47244 affects version 4.1.115.Final-tuxcare.3 of io.netty:netty-codec-xml." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-xml@4.1.115.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b147305a-8ab4-5880-8742-cf69ecb1da6d", "id": "CVE-2026-47691", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-47691 affects version 4.1.115.Final-tuxcare.3 of io.netty:netty-codec-xml." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-xml@4.1.115.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8fda1591-c807-5625-b83e-162cf5c01cd0", "id": "CVE-2026-48006", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-48006 affects version 4.1.115.Final-tuxcare.3 of io.netty:netty-codec-xml." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-xml@4.1.115.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6d972056-d599-598d-8a95-3a9d73b5c0f6", "id": "CVE-2026-48043", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-48043 affects version 4.1.115.Final-tuxcare.3 of io.netty:netty-codec-xml." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-xml@4.1.115.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0ab76694-27a4-5698-b4ec-547e64dc7a5b", "id": "CVE-2026-48059", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-48059 affects version 4.1.115.Final-tuxcare.3 of io.netty:netty-codec-xml." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-xml@4.1.115.Final-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-codec-xml@4.1.115.Final-tuxcare.3" } ] }