{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:4cd9cfab-898d-5c6c-ae1f-c35962c7b187", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1", "type": "library", "group": "io.netty", "name": "netty-resolver", "version": "4.1.63.Final-tuxcare.1", "purl": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:784d813a-8122-5058-9cde-fdf814ea951a", "id": "CVE-2021-37136", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37136 is fixed in version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:47152580-213d-55e7-af9b-8425988e7735", "id": "CVE-2021-37137", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-37137 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3a389ee0-9b36-5b27-9c9d-5459b469ed6d", "id": "CVE-2021-43797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-43797 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:96592bf5-6a69-5e12-be88-2dcefe2997f0", "id": "CVE-2022-24823", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-24823 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:27c4c3ba-afbd-56d8-9e5c-f3005d512289", "id": "CVE-2022-41881", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-41881 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c15c21fd-a3b8-50af-8fe4-a324bb6cf8d4", "id": "CVE-2022-41915", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-41915 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8463b8b2-da80-5c6a-8787-bd9346ba4736", "id": "CVE-2023-34462", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-34462 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ef0fc8f2-b4f8-582b-884c-35f77ea3b719", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:281f5f69-1e04-5992-8a8c-df42a7e955b6", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-resolver 4.1.63.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c2696629-d7ed-598b-8f1e-83d7c21b3d91", "id": "CVE-2024-29025", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-29025 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:871c4f56-5e13-55c1-adaf-9a1e4e3c2f2c", "id": "CVE-2024-47535", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-47535 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3cab1e60-d2ab-5af3-88ab-281f941cc035", "id": "CVE-2025-24970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24970 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b6346ecc-0983-5eed-aa9f-8ad1a5d28883", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4a62cabc-df78-5dbd-b73d-fb12b6100076", "id": "CVE-2025-55163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55163 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c90c7490-711d-582d-b7db-0e21f7147c6a", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3f7e2036-6f1c-533a-87f7-e66e08751908", "id": "CVE-2025-58057", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58057 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a2ca3559-9939-57e9-a4ff-b75b146bd1a2", "id": "CVE-2025-59419", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59419 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:95231d93-081d-5bb4-8791-9710f7e2109b", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:06bb8fb3-f9a3-50e2-beba-f3d8214bd393", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6ee2c73b-e7ac-5374-81f6-c12a3c20f06d", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1c43e201-5c9a-5d77-89ea-722d61f65616", "id": "CVE-2026-41417", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41417 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a09df708-8a7a-512d-9f9c-78a87fafd918", "id": "CVE-2026-42577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42577 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c9144320-dc87-5cff-b722-893fb00e695e", "id": "CVE-2026-42578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42578 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0d659c1f-2692-5278-901f-fc899733b234", "id": "CVE-2026-42579", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42579 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5c7478c0-eac1-55d5-b269-22f614367128", "id": "CVE-2026-42580", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42580 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:46f3f439-ac62-5048-af5e-c8c8fe7dd98c", "id": "CVE-2026-42581", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42581 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:35545e0a-0b85-5cc8-abdd-600d067beffb", "id": "CVE-2026-42584", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42584 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5903e0b3-e3a0-5025-86a0-21c20960af7f", "id": "CVE-2026-42585", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42585 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3735539f-4a6c-5117-9651-2c14b784b53f", "id": "CVE-2026-42586", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42586 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0d157836-f544-5a2d-99ff-b925f15a6e74", "id": "CVE-2026-42587", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42587 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:60072c2a-e6c0-5b65-8ca7-5c03f659efe5", "id": "CVE-2026-44248", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44248 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3e5def2d-4860-514d-81bc-2c02ab10bc9a", "id": "CVE-2026-44249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44249 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4f30ecf7-d793-59db-b28f-c56a5b821305", "id": "CVE-2026-44250", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44250 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c046401e-a866-54e1-9c98-9509b1b4175f", "id": "CVE-2026-44890", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44890 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:47d66520-e8d5-5ed5-872e-ec160020f853", "id": "CVE-2026-44893", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44893 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f3258f5b-050c-50d6-aba3-27297c7158de", "id": "CVE-2026-45416", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-45416 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e07ab467-485c-561b-9b40-ed88b24cbc43", "id": "CVE-2026-45536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-45536 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8b727481-f898-53bb-8bb9-de80fbfa5e68", "id": "CVE-2026-45673", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-45673 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bdc45d97-9edf-5a47-9c5b-63d486c418ce", "id": "CVE-2026-45674", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-45674 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b212d3d3-473b-5cc4-81be-8bad6e8ff2fd", "id": "CVE-2026-46340", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-46340 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3c7b8cc6-ecb1-5a2a-ae71-af9c58525383", "id": "CVE-2026-47244", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-47244 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:83136e25-b6cc-5055-954b-d5caff596cfa", "id": "CVE-2026-47691", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-47691 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0a79ab58-1f68-5286-a4fc-94678e4c47ec", "id": "CVE-2026-48006", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-48006 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f2d98216-ebb9-50ed-a728-45020a326b8c", "id": "CVE-2026-48043", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-48043 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:96a436c2-d05c-5263-a204-35f846fcbfdf", "id": "CVE-2026-48059", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-48059 affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2047f7e5-8c35-5d73-a8e5-64a8093f38ce", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.63.Final-tuxcare.1 of io.netty:netty-resolver." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-resolver@4.1.63.Final-tuxcare.1" } ] }