{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:f2352697-018b-5aa8-8bcf-174bdff6239d", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1", "type": "library", "group": "io.netty", "name": "netty-handler", "version": "4.1.93.Final-tuxcare.1", "purl": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:9558208d-8b00-500a-ad51-e554e0fbb047", "id": "CVE-2023-34462", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34462 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7aeb25bc-d619-5e4d-be1e-8685200114f0", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5ad5f678-95d3-55f0-93de-a6b6f625d56d", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-handler 4.1.93.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:437476a1-58e6-524e-8e01-2cebbf70afaa", "id": "CVE-2024-29025", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-29025 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7ffd0796-604b-58d0-b5b2-05efdcf0fc97", "id": "CVE-2024-47535", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47535 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a74c564e-966b-5911-8f47-94a357885f6f", "id": "CVE-2025-25193", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-25193 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8ea2c6b0-5ef8-5262-ba7e-5b46a070ca98", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5f1771ce-d295-50af-95b2-f4773ca38842", "id": "CVE-2025-58056", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58056 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:aadbe877-50fe-55bb-add3-cfbc821c2534", "id": "CVE-2025-58057", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58057 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b292e766-a452-5b3e-a1d0-57c00b8ef9bd", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5c6f9695-106a-575f-872b-4dc9811814f9", "id": "CVE-2025-67735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-67735 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7f9b228e-e282-5323-ab7a-4d14eff0a2ab", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c480076e-d402-56d0-9768-d65237b36b31", "id": "CVE-2026-33871", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-33871 is fixed in version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:68ec7ba3-7307-527e-9c19-d6fa25ecf800", "id": "CVE-2026-41417", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41417 affects version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:03dd97f0-f67d-5f66-befb-782e12dd3c32", "id": "CVE-2026-42577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42577 affects version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:214b7a39-42ac-52b9-ae04-5eb80122a31d", "id": "CVE-2026-42578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42578 affects version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:59d03724-536b-5a90-86c2-dcabae5df90b", "id": "CVE-2026-42579", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42579 affects version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:381b0504-a32e-5f87-9102-1d4589939cb9", "id": "CVE-2026-42580", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42580 affects version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:890cf86a-e5ac-5192-a94d-7e2172d99747", "id": "CVE-2026-42581", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42581 affects version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c453badf-8aab-5693-9beb-5037b0095193", "id": "CVE-2026-42584", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42584 affects version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8b3f280f-ab04-5e6a-ac92-b77e663c7867", "id": "CVE-2026-42585", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42585 affects version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:55a47713-8761-578e-9108-7a8ca8595bfd", "id": "CVE-2026-42586", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42586 affects version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2efb70f6-7fb8-5400-a9c1-a8c9355cfb0c", "id": "CVE-2026-42587", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42587 affects version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c7faab60-8382-5231-8ee4-6c6ad1b10be2", "id": "CVE-2026-44248", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44248 affects version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:618571ac-4ac7-5c51-a959-b95da57cd5d6", "id": "CVE-2026-44249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44249 affects version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2dd1960d-c8a6-5f8f-85d6-ff0aab4999f1", "id": "CVE-2026-44250", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44250 affects version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2569c6c7-b55a-5c6d-bc5f-9a7e6f6e513c", "id": "CVE-2026-44890", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44890 affects version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:075de98a-c1a6-5264-af7b-b93aa069b682", "id": "CVE-2026-44893", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44893 affects version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5f1b284d-9117-5e93-95d5-88155835cd3b", "id": "CVE-2026-45416", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-45416 affects version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:12825a0e-baa8-5ffa-9f36-6898e7612d1d", "id": "CVE-2026-45536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-45536 affects version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:123ce808-6484-518c-9536-de452828177a", "id": "CVE-2026-45673", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-45673 affects version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c83f4410-3e51-5162-bec7-f1f97c03dbad", "id": "CVE-2026-45674", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-45674 affects version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:14c5e296-cecd-5b33-bbc8-9fe3b92c7b57", "id": "CVE-2026-46340", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-46340 affects version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:70813de5-f1e6-5039-a4a4-25c2f65e8d83", "id": "CVE-2026-47244", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-47244 affects version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cf119c36-87b0-531c-b468-1f47fffe40a2", "id": "CVE-2026-47691", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-47691 affects version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1c0f602e-ca82-57c1-9d25-99c7cf2d81b9", "id": "CVE-2026-48006", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-48006 affects version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e423758a-256d-5e5e-9267-0767c57dab61", "id": "CVE-2026-48043", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-48043 affects version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f1e8d0e5-f6f7-5017-b616-3653bfa7852b", "id": "CVE-2026-48059", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-48059 affects version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fd27b433-a4da-549a-b988-6d918c406c67", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.93.Final-tuxcare.1 of io.netty:netty-handler." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-handler@4.1.93.Final-tuxcare.1" } ] }