{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:8a3e0087-7184-5bcb-a64e-740f82d6f294", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-handler-ssl-ocsp@4.1.112.Final-tuxcare.4", "type": "library", "group": "io.netty", "name": "netty-handler-ssl-ocsp", "version": "4.1.112.Final-tuxcare.4", "purl": "pkg:maven/io.netty/netty-handler-ssl-ocsp@4.1.112.Final-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:e71e0360-dae6-533b-b815-12074df27f9a", "id": "CVE-2024-47535", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-47535 affects version 4.1.112.Final-tuxcare.4 of io.netty:netty-handler-ssl-ocsp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-ssl-ocsp@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8b93fff2-a4a6-5abb-9025-f1f7f21ecc71", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.112.Final-tuxcare.4 of io.netty:netty-handler-ssl-ocsp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-ssl-ocsp@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:cf3cdbba-30e6-51c8-a1b0-b93f6ddd77a7", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.112.Final-tuxcare.4 of io.netty:netty-handler-ssl-ocsp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-ssl-ocsp@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:25ee6820-d1fd-5435-918f-c700f496bf5a", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.112.Final-tuxcare.4 of io.netty:netty-handler-ssl-ocsp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-ssl-ocsp@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:764f1aef-19ec-5b89-8635-d735a844ef4e", "id": "CVE-2025-58056", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58056 is fixed in version 4.1.112.Final-tuxcare.4 of io.netty:netty-handler-ssl-ocsp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-ssl-ocsp@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7ec98e9a-e449-52b1-90e0-525fb8eae999", "id": "CVE-2025-58057", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58057 is fixed in version 4.1.112.Final-tuxcare.4 of io.netty:netty-handler-ssl-ocsp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-ssl-ocsp@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e2849ae1-4250-5fd5-979c-fc0ecea6c0e4", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.112.Final-tuxcare.4 of io.netty:netty-handler-ssl-ocsp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-ssl-ocsp@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:248b6bbc-152c-5c99-862a-f1371eec6b35", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.112.Final-tuxcare.4 of io.netty:netty-handler-ssl-ocsp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-ssl-ocsp@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:6ce28916-d76f-5bf0-8d72-359ae0d67664", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.112.Final-tuxcare.4 of io.netty:netty-handler-ssl-ocsp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-ssl-ocsp@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b643c4e1-0c90-541c-93a7-eed0c10f93d1", "id": "CVE-2026-33871", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-33871 is fixed in version 4.1.112.Final-tuxcare.4 of io.netty:netty-handler-ssl-ocsp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-ssl-ocsp@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:71c50135-746b-535c-a497-7cfb38086a2f", "id": "CVE-2026-41417", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41417 affects version 4.1.112.Final-tuxcare.4 of io.netty:netty-handler-ssl-ocsp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-ssl-ocsp@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0a33a485-f125-5bd6-af62-c574f645fdbf", "id": "CVE-2026-42577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42577 affects version 4.1.112.Final-tuxcare.4 of io.netty:netty-handler-ssl-ocsp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-ssl-ocsp@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b5239165-9659-514f-9aeb-668d35f8d483", "id": "CVE-2026-42578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42578 affects version 4.1.112.Final-tuxcare.4 of io.netty:netty-handler-ssl-ocsp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-ssl-ocsp@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e9c524ff-cd91-5283-9cdf-f2327a0191cf", "id": "CVE-2026-42579", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-42579 is fixed in version 4.1.112.Final-tuxcare.4 of io.netty:netty-handler-ssl-ocsp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-ssl-ocsp@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:1231a7c0-72ed-50f1-8ce5-4d32a10c0446", "id": "CVE-2026-42580", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42580 affects version 4.1.112.Final-tuxcare.4 of io.netty:netty-handler-ssl-ocsp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-ssl-ocsp@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b1f1595d-f68f-55a1-8f22-29c031ec8494", "id": "CVE-2026-42581", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42581 affects version 4.1.112.Final-tuxcare.4 of io.netty:netty-handler-ssl-ocsp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-ssl-ocsp@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:360e6b73-d586-5c44-9460-e4c4d8c51c63", "id": "CVE-2026-42584", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42584 affects version 4.1.112.Final-tuxcare.4 of io.netty:netty-handler-ssl-ocsp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-ssl-ocsp@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c9c5c9bf-de06-5ca1-b922-3208ee35f1d8", "id": "CVE-2026-42585", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42585 affects version 4.1.112.Final-tuxcare.4 of io.netty:netty-handler-ssl-ocsp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-ssl-ocsp@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:79f64824-7810-5cbd-a8d1-5b6c1626751b", "id": "CVE-2026-42586", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42586 affects version 4.1.112.Final-tuxcare.4 of io.netty:netty-handler-ssl-ocsp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-ssl-ocsp@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:11399e26-e51a-572d-994b-6c1d0eab6e46", "id": "CVE-2026-42587", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42587 affects version 4.1.112.Final-tuxcare.4 of io.netty:netty-handler-ssl-ocsp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-ssl-ocsp@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:535ff24f-fe9a-52c2-aa69-70ced8f114fd", "id": "CVE-2026-44248", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44248 affects version 4.1.112.Final-tuxcare.4 of io.netty:netty-handler-ssl-ocsp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-ssl-ocsp@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ce6a1c7e-983a-5c1f-bdb5-2e4f2b0ea395", "id": "CVE-2026-44249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44249 affects version 4.1.112.Final-tuxcare.4 of io.netty:netty-handler-ssl-ocsp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-ssl-ocsp@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a4b29b79-784f-5db4-be49-be2c94ca716f", "id": "CVE-2026-44250", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44250 affects version 4.1.112.Final-tuxcare.4 of io.netty:netty-handler-ssl-ocsp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-ssl-ocsp@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c62161e8-506f-5be8-8f62-84588389b672", "id": "CVE-2026-44890", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44890 affects version 4.1.112.Final-tuxcare.4 of io.netty:netty-handler-ssl-ocsp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-ssl-ocsp@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0d87ffb9-22bb-590f-b51a-fd629b2cc65f", "id": "CVE-2026-44893", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44893 affects version 4.1.112.Final-tuxcare.4 of io.netty:netty-handler-ssl-ocsp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-ssl-ocsp@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:22515a38-18ef-52c2-817b-b73386d80b91", "id": "CVE-2026-45416", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-45416 affects version 4.1.112.Final-tuxcare.4 of io.netty:netty-handler-ssl-ocsp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-ssl-ocsp@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a89b8161-c0a5-5420-b195-9b4479fec9f8", "id": "CVE-2026-45536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-45536 affects version 4.1.112.Final-tuxcare.4 of io.netty:netty-handler-ssl-ocsp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-ssl-ocsp@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7c24931e-b8eb-5f40-bb6c-5477c42eea05", "id": "CVE-2026-45673", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-45673 affects version 4.1.112.Final-tuxcare.4 of io.netty:netty-handler-ssl-ocsp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-ssl-ocsp@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:126700bc-593c-5af9-82b9-4f3b84c51b4f", "id": "CVE-2026-45674", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-45674 affects version 4.1.112.Final-tuxcare.4 of io.netty:netty-handler-ssl-ocsp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-ssl-ocsp@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4cd4b44c-22c8-5a68-bfb9-4bee7956169b", "id": "CVE-2026-46340", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-46340 affects version 4.1.112.Final-tuxcare.4 of io.netty:netty-handler-ssl-ocsp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-ssl-ocsp@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:5696fed4-99c2-5ba5-9fd4-ad405b8c369c", "id": "CVE-2026-47244", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-47244 affects version 4.1.112.Final-tuxcare.4 of io.netty:netty-handler-ssl-ocsp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-ssl-ocsp@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:02e5cf62-b062-5198-86ff-38fc6f4e04c2", "id": "CVE-2026-47691", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-47691 affects version 4.1.112.Final-tuxcare.4 of io.netty:netty-handler-ssl-ocsp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-ssl-ocsp@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:87da5a50-0fac-5fb1-a95c-b1387a7e4ae3", "id": "CVE-2026-48006", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-48006 affects version 4.1.112.Final-tuxcare.4 of io.netty:netty-handler-ssl-ocsp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-ssl-ocsp@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:6e0fdf46-01b3-504d-9e54-52320e30c786", "id": "CVE-2026-48043", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-48043 affects version 4.1.112.Final-tuxcare.4 of io.netty:netty-handler-ssl-ocsp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-ssl-ocsp@4.1.112.Final-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:5361657e-802c-5a7d-80dd-1984cf5097b1", "id": "CVE-2026-48059", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-48059 affects version 4.1.112.Final-tuxcare.4 of io.netty:netty-handler-ssl-ocsp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler-ssl-ocsp@4.1.112.Final-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-handler-ssl-ocsp@4.1.112.Final-tuxcare.4" } ] }